[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fYNjikZy-M6645Ets2f0KTDT_JKdcucSvf7qjthx08OE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":143,"fingerprints":308},"tolstoy-comments","Tolstoy Comments","2.4.1","alekseevsergey","https:\u002F\u002Fprofiles.wordpress.org\u002Falekseevsergey\u002F","\u003Cp>Tolstoy comments – быстрая система комментариев для вашего сайта. Не нагружает страницу, не зависает, отлично выглядит на мобильных. Обновление и модерация комментариев в режиме реального времени. Авторизация через все популярные соцсети (в т.ч. ОК и ВК). Индексация комментариев поисковиками. Круглосуточная русскоязычная поддержка. Крутейший модуль геймификации для большего вовлечения пользователей.\u003C\u002Fp>\n\u003Cp>Включает в себя Чат-мессенджер (систему комментирования), систему рейтингов, наград и подписок. Отлично подойдет для вебинаров, сайтов медиа, инфо-бизнесовых площадок, тематических блогов и любых отзовиков.\u003C\u002Fp>\n\u003Cp>Tolstoy Comments виджет который устанавливается на сайт и помогает вовлекать читателей в общение, увеличивать частоту визитов ядерной аудитории, глубину просмотра и время на сайте. И в конечном счете не только найти и увеличить свою лояльную аудиторию, но и заработать на ней. Напрямую, за счет открутки рекламы, и косвенно за счет производства дополнительного контента читателями (кейсы reddit, seeking alpha, хабрхабр, кинопоиск, пикабу).\u003C\u002Fp>\n\u003Ch4>Как это работает.\u003C\u002Fh4>\n\u003Ch4>Современные чаты\u003C\u002Fh4>\n\u003Cp>Tolstoy Comments – удобный чат на всех устройствах. Отлично выглядит на мобильных, поддерживает все виды медиа: фотогалереи, видео и гифки. Чаты не виснут даже при нескольких тысячах сообщений в ветке и невероятно быстро работают.\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fblogs.tolstoycomments.com\u002Fnovyy-format-vidzheta-eshhe-bolshe-komme\u002F\" rel=\"nofollow ugc\">Подробнее\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Бейджи\u002Fнаграды\u003C\u002Fh4>\n\u003Cp>Кажется, мы первые придумали награждать пользователей за комментарии. В системе существует более 150 значков-наград за разные виды активности. Например, написал лучший комментарий в ветке — лови бейдж. Часть наград выдается в автоматическом режиме, часть вручается модераторами. Вы сами сможете создавать авторские наборы наград для своих пользователей.\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fblogs.tolstoycomments.com\u002Fbeydzhi-na-tolstoy-comments-poluchi-ikh-vse\u002F\" rel=\"nofollow ugc\">Подробнее\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Динамические рейтинги пользователей\u003C\u002Fh4>\n\u003Cp>Рейтинг – это уровень популярности комментаторов сайта. Чтобы находиться вверху рейтинга, нужно остроумно, интересно и много писать. Наша миссия вернуть репутацию в интернете.\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fblogs.tolstoycomments.com\u002Freytingi-polzovateley-yeto-eshhe-chto\u002F\" rel=\"nofollow ugc\">Подробнее\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Уведомления\u003C\u002Fh4>\n\u003Cp>Tolstoy Comments умеет возвращать пользователей на ваш сайт push-уведомлениями и e-mail-рассылками. Пользователь ни за что не пропустит ответы на свои комментарии, новые оценки и награды.\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fblogs.tolstoycomments.com\u002Fpush-uvedomleniya-o-otvetakh-na-kommentari\u002F\" rel=\"nofollow ugc\">Подробнее\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Монетизация\u003C\u002Fh4>\n\u003Cp>На тарифе Pro вы можете монетизировать комментарии, разместив код вашей баннерной системы внутри виджета. Для сайтов с посещаемостью больше 1М уников, есть специальное предложение.\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fblogs.tolstoycomments.com\u002Fplatnye-i-besplatnye-tarify-tolstoy-comments-razbi\u002F\" rel=\"nofollow ugc\">Подробнее\u003C\u002Fa>\u003C\u002Fp>\n","Tolstoy Comments – Быстрая real-time система комментирования с геймификацией и авторизацией через  соцсети.",20,2556,0,"2025-05-16T16:29:00.000Z","6.8.5","3.0.1","5.6",[19,20,21,22,23],"antispam","comments","gamification","notification","widget","https:\u002F\u002Ftolstoycomments.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftolstoy-comments.2.4.1.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},1,30,94,"2026-04-04T16:00:45.468Z",[36,56,79,100,120],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":13,"downloaded":44,"rating":26,"num_ratings":31,"last_updated":45,"tested_up_to":15,"requires_at_least":46,"requires_php":47,"tags":48,"homepage":54,"download_link":55,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"quiet-admin","Quiet Admin – disable comments, hide notices, and clean dashboard widgets","2.0.4","Element Media LLC","https:\u002F\u002Fprofiles.wordpress.org\u002Felementmediallc\u002F","\u003Cp>Tired of a messy WordPress admin full of notices, unused widgets, and unwanted comment clutter? \u003Cstrong>Quiet Admin\u003C\u002Fstrong> helps you create a cleaner, distraction-free wp-admin so you can focus on what matters.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>🛑 \u003Cstrong>Hide Notices:\u003C\u002Fstrong> Choose to hide non-critical notices, or silence \u003Cem>all\u003C\u002Fem> admin notices temporarily.  \u003C\u002Fli>\n\u003Cli>💬 \u003Cstrong>Disable Comments:\u003C\u002Fstrong> Turn off comments site-wide, or selectively by post type.  \u003C\u002Fli>\n\u003Cli>📋 \u003Cstrong>Clean Dashboard Widgets:\u003C\u002Fstrong> Remove default WordPress widgets and plugin widgets with a live dashboard manager.  \u003C\u002Fli>\n\u003Cli>⚡ \u003Cstrong>Lightweight & Fast:\u003C\u002Fstrong> Built for performance, with no bloat.  \u003C\u002Fli>\n\u003Cli>🎯 \u003Cstrong>Simple UI:\u003C\u002Fstrong> Everything is in one place — no complicated settings.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Quiet Admin is perfect for agencies, freelancers, and site owners who want to \u003Cstrong>streamline their admin dashboard and improve productivity\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>👉 Learn more and find tips on using Quiet Admin at \u003Ca href=\"https:\u002F\u002Felement.ps\" rel=\"nofollow ugc\">Element Media\u003C\u002Fa>.\u003C\u002Fp>\n","Quiet Admin declutters WordPress by hiding noisy admin notices, disabling comments, and removing dashboard widgets — all with a simple, intuitive inte &hellip;",262,"2025-08-29T20:43:00.000Z","6.1","7.4",[49,50,51,52,53],"dashboard-widgets","disable-comments","hide-notices","hide-widgets","remove-notifications","https:\u002F\u002Felement.ps\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fquiet-admin.2.0.4.zip",{"slug":57,"name":58,"version":17,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":33,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":69,"tags":70,"homepage":74,"download_link":75,"security_score":76,"vuln_count":77,"unpatched_count":13,"last_vuln_date":78,"fetched_at":28},"akismet","Akismet Anti-spam: Spam Protection","Automattic","https:\u002F\u002Fprofiles.wordpress.org\u002Fautomattic\u002F","\u003Cp>The best anti-spam protection to block spam comments and spam in a contact form. The most trusted antispam solution for WordPress and WooCommerce.\u003C\u002Fp>\n\u003Cp>Akismet checks your comments and contact form submissions against our global database of spam to prevent your site from publishing malicious content. You can review the comment spam it catches on your blog’s “Comments” admin screen.\u003C\u002Fp>\n\u003Cp>Major features in Akismet include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically checks all comments and filters out the ones that look like spam.\u003C\u002Fli>\n\u003Cli>Each comment has a status history, so you can easily see which comments were caught or cleared by Akismet and which were spammed or unspammed by a moderator.\u003C\u002Fli>\n\u003Cli>URLs are shown in the comment body to reveal hidden or misleading links.\u003C\u002Fli>\n\u003Cli>Moderators can see the number of approved comments for each user.\u003C\u002Fli>\n\u003Cli>A discard feature that outright blocks the worst spam, saving you disk space and speeding up your site.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>PS: You’ll be prompted to get an Akismet.com API key to use it, once activated. Keys are free for personal blogs; paid subscriptions are available for businesses and commercial sites.\u003C\u002Fp>\n","The best anti-spam protection to block spam comments and spam in a contact form. The most trusted antispam solution for WordPress and WooCommerce.",6000000,386405930,1173,"2025-11-12T16:31:00.000Z","6.9.4","5.8","7.2",[71,19,20,72,73],"anti-spam","contact-form","spam","https:\u002F\u002Fakismet.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fakismet.5.6.zip",99,2,"2015-10-13 00:00:00",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":89,"num_ratings":90,"last_updated":91,"tested_up_to":15,"requires_at_least":92,"requires_php":93,"tags":94,"homepage":97,"download_link":98,"security_score":26,"vuln_count":31,"unpatched_count":13,"last_vuln_date":99,"fetched_at":28},"antispam-bee","Antispam Bee","2.11.8","pluginkollektiv","https:\u002F\u002Fprofiles.wordpress.org\u002Fpluginkollektiv\u002F","\u003Cp>Say Goodbye to comment spam on your WordPress blog or website. \u003Cem>Antispam Bee\u003C\u002Fem> blocks spam comments and trackbacks effectively, without captchas and without sending personal information to third party services. It is free of charge, ad-free and 100% GDPR compliant.\u003C\u002Fp>\n\u003Ch3>Feature\u002FSettings Overview\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Trust approved commenters.\u003C\u002Fli>\n\u003Cli>Trust commenters with a Gravatar.\u003C\u002Fli>\n\u003Cli>Consider the comment time.\u003C\u002Fli>\n\u003Cli>Allow comments only in a certain language.\u003C\u002Fli>\n\u003Cli>Block or allow commenters from certain countries.\u003C\u002Fli>\n\u003Cli>Treat BBCode links as spam.\u003C\u002Fli>\n\u003Cli>Use regular expressions.\u003C\u002Fli>\n\u003Cli>Search local spam database for commenters previously marked as spammers.\u003C\u002Fli>\n\u003Cli>Notify admins by e-mail about incoming spam.\u003C\u002Fli>\n\u003Cli>Delete existing spam after n days.\u003C\u002Fli>\n\u003Cli>Limit approval to comments\u002Fpings (will delete other comment types).\u003C\u002Fli>\n\u003Cli>Select spam indicators to send comments to deletion directly.\u003C\u002Fli>\n\u003Cli>Optionally exclude trackbacks and pingbacks from spam detection.\u003C\u002Fli>\n\u003Cli>Optionally spam-check comment forms on archive pages.\u003C\u002Fli>\n\u003Cli>Display spam statistics on the dashboard, including daily updates of spam detection rate and a total of blocked spam comments.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Community support via the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fantispam-bee\" rel=\"ugc\">support forums on wordpress.org\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Read \u003Ca href=\"https:\u002F\u002Fantispambee.pluginkollektiv.org\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">the documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>We don’t handle support via e-mail, Twitter, GitHub issues etc.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contribute\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Active development of this plugin is handled \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpluginkollektiv\u002Fantispam-bee\" rel=\"nofollow ugc\">on GitHub\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Pull requests for documented bugs are highly appreciated.\u003C\u002Fli>\n\u003Cli>If you think you’ve found a bug (e.g. you’re experiencing unexpected behavior), please post at the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fantispam-bee\" rel=\"ugc\">support forums\u003C\u002Fa> first.\u003C\u002Fli>\n\u003Cli>If you want to help us translate this plugin you can do so \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fantispam-bee\" rel=\"nofollow ugc\">on WordPress Translate\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Author: \u003Ca href=\"https:\u002F\u002Fsergejmueller.github.io\u002F\" rel=\"nofollow ugc\">Sergej Müller\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Maintainers: \u003Ca href=\"https:\u002F\u002Fpluginkollektiv.org\" rel=\"nofollow ugc\">pluginkollektiv\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Sophisticated antispam plugin for effective daily comment and trackback spam-fighting. Built with data protection and privacy in mind.",700000,10958057,96,225,"2025-07-22T11:23:00.000Z","4.6","5.2",[71,19,20,95,96],"spam-filter","spam-protection","https:\u002F\u002Fantispambee.pluginkollektiv.org\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fantispam-bee.2.11.8.zip","2023-11-27 00:00:00",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":89,"num_ratings":110,"last_updated":111,"tested_up_to":67,"requires_at_least":112,"requires_php":69,"tags":113,"homepage":115,"download_link":116,"security_score":117,"vuln_count":118,"unpatched_count":13,"last_vuln_date":119,"fetched_at":28},"cleantalk-spam-protect","Spam protection, Honeypot, Anti-Spam by CleanTalk","6.74","CleanTalk Inc","https:\u002F\u002Fprofiles.wordpress.org\u002Fcleantalk\u002F","\u003Cp>Top-rated anti-spam protection for WordPress. No CAPTCHA, no questions, no animal counting, no puzzles, no math and no spam bots. Universal AntiSpam plugin.\u003C\u002Fp>\n\u003Ch4>Anti-Spam features\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Stops spam comments.\u003C\u002Fli>\n\u003Cli>Stops spam registrations.\u003C\u002Fli>\n\u003Cli>Stops spam contact emails.\u003C\u002Fli>\n\u003Cli>Stops spam orders.\u003C\u002Fli>\n\u003Cli>Stops spam bookings.\u003C\u002Fli>\n\u003Cli>Stops spam subscriptions.\u003C\u002Fli>\n\u003Cli>Stops spam surveys, polls.\u003C\u002Fli>\n\u003Cli>Stops spam in widgets.\u003C\u002Fli>\n\u003Cli>Stops spam in WooCommerce.\u003C\u002Fli>\n\u003Cli>Real-time email validation. Is email real or Not.\u003C\u002Fli>\n\u003Cli>Checks and removes the existing spam comments and spam users.\u003C\u002Fli>\n\u003Cli>Compatible with mobile users and devices.\u003C\u002Fli>\n\u003Cli>Compatible with General Data Protection Regulation (GDPR) (EU).\u003C\u002Fli>\n\u003Cli>Blocking  disposable & temporary emails.\u003C\u002Fli>\n\u003Cli>No Spam – No Google Penalties. Give your SEO boost.\u003C\u002Fli>\n\u003Cli>Mobile friendly Anti Spam & FireWall.\u003C\u002Fli>\n\u003Cli>Stops spam in Search Form.\u003C\u002Fli>\n\u003Cli>Disable comments.\u003C\u002Fli>\n\u003Cli>Spam FireWall: Anti-Flood.\u003C\u002Fli>\n\u003Cli>Spam FireWall: Anti-Crawler.\u003C\u002Fli>\n\u003Cli>Hide «Website» field for comments.\u003C\u002Fli>\n\u003Cli>Block messages by languages, countries, networks and stop words.\u003C\u002Fli>\n\u003Cli>Email Address Encoder – protection for email addresses published on your site.\u003C\u002Fli>\n\u003Cli>No jQuery.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Free trial then $12 per year\u003C\u002Fh4>\n\u003Cp>CleanTalk is an anti-spam plugin which works with the premium Cloud Anti-Spam service cleantalk.org. This plugin as a service \u003Ca href=\"https:\u002F\u002Fdeveloper.wordpress.org\u002Fplugins\u002Fwordpress-org\u002Fdetailed-plugin-guidelines\u002F#6-software-as-a-service-is-permitted\" rel=\"nofollow ugc\">https:\u002F\u002Fdeveloper.wordpress.org\u002Fplugins\u002Fwordpress-org\u002Fdetailed-plugin-guidelines\u002F#6-software-as-a-service-is-permitted\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Public reviews\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Cp>It’s more than just a tool to combat spam; it’s an integral component that enhances the overall quality and performance of your website.\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fwww.techbusinessnews.com.au\u002Fembracing-a-spam-free-digital-experience-with-cleantalk-anti-spam-plugin\u002F\" rel=\"nofollow ugc\">techbusinessnews.com.au\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Improve Your Security WordPress Spam Protection With CleanTalk Anti-Spam\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fthehackernews.com\u002F2023\u002F07\u002Fimprove-your-security-wordpress-spam.html\" rel=\"nofollow ugc\">The Hacker News\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>CleanTalk – Cloud-Based Anti-Spam Service to Keep Your Site Bot-Free.\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fnewswatchtv.com\u002F2018\u002F07\u002F18\u002Fcleantalk-newswatch-review\u002F\" rel=\"nofollow ugc\">NewsWatch Review\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Compare reCAPTCHA & Akismet VS CleanTalk\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fwww.saashub.com\u002Fcompare-recaptcha-vs-cleantalk\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.saashub.com\u002Fcompare-recaptcha-vs-cleantalk\u003C\u002Fa>\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fwww.saashub.com\u002Fcompare-akismet-vs-cleantalk\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.saashub.com\u002Fcompare-akismet-vs-cleantalk\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>I know you have heard of a number of anti-spam plugins. But you must know, the cloud-based ones are the best regarding detection rate. They compare all the content in forms with their own algorithm to find out the legibility.\u003Cbr \u002F>\n  \u003Cem>\u003Ca href=\"https:\u002F\u002Fwww.techwibe.com\u002Fcleantalk-wordpress-plugin-review\u002F\" rel=\"nofollow ugc\">www.techwibe.com\u003C\u002Fa>\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>The key selling point of CleanTalk for me is not simply its effectiveness. It’s the fact that CleanTalk works in the background. It does not make users jump through hoops in order to submit a comment or complete a form.\u003Cbr \u002F>\n  \u003Ca href=\"https:\u002F\u002Fwww.kevinmuldoon.com\u002Fcleantalk-anti-spam-service\u002F\" rel=\"nofollow ugc\">www.kevinmuldoon.com\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>AntiSpam protection for comments\u003C\u002Fh4>\n\u003Cp>Native spam protection for WordPress, JetPack comments and any other comment plugins. The plugin moves spam comments to SPAM folder or you can set the option to ban spam comments silently. You can also enable the option in the plugin settings to auto-delete comments from SPAM folder.\u003C\u002Fp>\n\u003Ch4>Contact Form 7 spam filter\u003C\u002Fh4>\n\u003Cp>Plugin extends spam protection for Contact Form 7 (CF7). It can be used with any other third-party spam filters.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fblog.cleantalk.org\u002Fhow-to-protect-your-contactform7-contact-form-using-cleantalk-anti-spam-plugin\u002F\" rel=\"nofollow ugc\">How to protect your Contact Form 7 using CleanTalk Anti-Spam plugin\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Elementor Website Builder filter\u003C\u002Fh4>\n\u003Cp>Plugin extends spam protection for Elementor Website Builder. It filters spam submisssions and tested for contact form type.\u003C\u002Fp>\n\u003Ch4>Gravity forms spam filter\u003C\u002Fh4>\n\u003Cp>Plugin extends spam protection for Gravity forms. It filters spam submisssions for any type of forms.\u003C\u002Fp>\n\u003Ch4>Formidable Form Builder spam filter\u003C\u002Fh4>\n\u003Cp>Plugin extends spam protection for Formidable Form Builder. It filters spam submisssions for any type of forms – Contact Form, Survey & Quiz Forms.\u003C\u002Fp>\n\u003Ch4>Leaky Paywall subscription protection\u003C\u002Fh4>\n\u003Cp>Plugin protects Leaky Paywall plugin (by ZEEN01) against spam subscriptions. It can be used with any other third-party spam filters.\u003C\u002Fp>\n\u003Ch4>HubSpot protection for embedded forms\u003C\u002Fh4>\n\u003Cp>Plugin protects HubSpot embedded forms against any spam submissions. Guide to start using embedded forms https:\u002F\u002Fknowledge.hubspot.com\u002Fforms\u002Fhow-can-i-share-a-hubspot-form-if-im-using-an-external-site\u003C\u002Fp>\n\u003Ch4>Contact Form by WPForms spam filter\u003C\u002Fh4>\n\u003Cp>Plugin extends Contact Form by WPForms to provide spam protection. It filters spam submissions for each type of forms – simple contact form, marketing form, request a quote and etc.\u003C\u002Fp>\n\u003Ch4>WooCommerce spam filter\u003C\u002Fh4>\n\u003Cp>Anti-spam by CleanTalk filters spam registrations and spam reviews for WooCommerce. The plugin is fully compatible with WooCommerce 2.1 and higher.\u003C\u002Fp>\n\u003Ch4>Spam filter for theme contact forms\u003C\u002Fh4>\n\u003Cp>The plugin blocks spam emails via any theme (built-in ones included) contact forms. The plugin filters spam emails silently (without any error notices on WordPress frontend) in AJAX forms as well.\u003C\u002Fp>\n\u003Ch4>bbPress spam filter\u003C\u002Fh4>\n\u003Cp>Spam protection for everything about bbPress: logins, registrations, forums, topics and replies.\u003C\u002Fp>\n\u003Ch4>Many other great contact, signups and all kind of forms that supported by CleanTalk\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>AWeber form builder \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Faweber-web-form-widget\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fplugins\u002Faweber-web-form-widget\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Contact form by BestWebSoft \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcontact-form-plugin\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcontact-form-plugin\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Contact Form Plugin by Fluent Forms Ninja forms \u003Ca href=\"https:\u002F\u002Ffluentforms.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Ffluentforms.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Forminator contact from \u003Ca href=\"https:\u002F\u002Fwpmudev.com\u002Fproject\u002Fforminator-pro\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwpmudev.com\u002Fproject\u002Fforminator-pro\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Ninja forms \u003Ca href=\"https:\u002F\u002Fninjaforms.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fninjaforms.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Newsletters – MC4WP: Mailchimp for WordPress (\u003Ca href=\"https:\u002F\u002Fwww.mc4wp.com\u002F\" rel=\"nofollow ugc\">mc4wp.com\u003C\u002Fa>), MailPoet – emails and newsletters in WordPress (https:\u002F\u002Fwww.mailpoet.com\u002F)\u003C\u002Fli>\n\u003Cli>WS Form Lite \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fws-form\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fws-form\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>WP User Frontend, UserPro.\u003C\u002Fli>\n\u003Cli>WordPress Landing Pages.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Protection for forms above works as built-in function of Anti-Spam by CleanTalk, without any additional actions from a user. Anywaym, if you have missed spam, try to activate a few options below. If nothing helps, ask for help at support forum \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcleantalk-spam-protect\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcleantalk-spam-protect\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Any WordPress form (checkbox ‘Custom contact forms’).\u003C\u002Fli>\n\u003Cli>Any submission to the site (checkbox ‘Check all POST data’).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Check existing comments for spam. Bulk spam comments removal. Spam comment Cleaner\u003C\u002Fh4>\n\u003Cp>With the help of anti-spam by CleanTalk you can inspect through existing comments to find and quickly delete spam comments at once. To use this function, go to WP Console -> Comments -> Find spam comments.\u003C\u002Fp>\n\u003Ch4>Check existing users for spam. Bulk spam accounts removal. Spam users cleaner\u003C\u002Fh4>\n\u003Cp>With the help of anti-spam by CleanTalk you can inspect through existing accounts to find and quickly delete spam users at once. For use this function, go to WP Console -> Users -> Check for spam. Also, you can export a list of spam users to the CSV.\u003C\u002Fp>\n\u003Ch4>Private black lists for anti-spam service\u003C\u002Fh4>\n\u003Cp>Automatically block comments and registrations from your private black IP\u002Femail address list.\u003C\u002Fp>\n\u003Ch4>Hide «Website» field for comments\u003C\u002Fh4>\n\u003Cp>This option hides the «Website» field from standard WordPress comments forms. After that spammers won’t be able to send spam links using «Website» field in the bottom of the comments form.\u003C\u002Fp>\n\u003Ch4>Low false\u002Fpositive rate\u003C\u002Fh4>\n\u003Cp>This plugin uses multiple anti-spam tests to filter spam bots having as low false\u002Fpositive rate as possible.\u003C\u002Fp>\n\u003Ch4>How does CleanTalk improve SEO for your website?\u003C\u002Fh4>\n\u003Cp>\u003Cem>CleanTalk works faster than most of the other anti-spam plugins.\u003C\u002Fem> It is common knowledge that the faster your site loads, the better your customer experience is, the better your SEO will be, and the better your site will convert. Speed is becoming increasingly important in SEO, conversion and user experience. Today, site speed is one of the most important ranking factors on Google. A site that loads slowly will lose visitors and potential revenue.\u003C\u002Fp>\n\u003Cp>Among anti-spam plugins CleanTalk is one of the fastest. Despite the large plugin functionality, the developers have optimized the performance of\u003Cbr \u002F>\nthe plugin so that AntiSpam by CleanTalk is faster than most analogs. This contributes to the cloud service architecture, as all calculations take place in the cloud, not on the server, the server receives the finished result for further action.\u003C\u002Fp>\n\u003Cp>https:\u002F\u002Fs.w.org\u002Fplugins\u002Fcleantalk-spam-protect\u002Fscreenshot-5.png?r=1288723\u003C\u002Fp>\n\u003Cp>Unlike stand-alone plugins (like Antispam Bee) Anti-Spam by CleanTalk uses less CPU that improves site response, visitors experience and SEO results.\u003C\u002Fp>\n\u003Ch4>Spam FireWall\u003C\u002Fh4>\n\u003Cp>Spam FireWall allows blocking the most active spam bots before they get access to your website. It prevents spam bots from loading website pages so your web server doesn’t have to perform all scripts on these pages. Also it prevents scanning of pages of the website by spam bots. Therefore Spam FireWall significantly reduces the load on your web server. Spam FireWall also makes CleanTalk the two-step protection from spam bots. Spam FireWall is the first step and it blocks the most active spam bots.  CleanTalk Anti-Spam is the second step and checks all other requests on the website in the moment of submitting comments\u002Fregisters etc. How does it work?\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The visitor enters to your web site.\u003C\u002Fli>\n\u003Cli>HTTP request data are being checked in the nearly 5.8 million of the identified spam bot IPs.\u003C\u002Fli>\n\u003Cli>If it is an active spam bot, the bot gets a blank page, if it is a visitor then he receives a normal page. This process is completely transparent for the visitors.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>All the CleanTalk Spam FireWall activity is being logged in the process of filtering.\u003C\u002Fp>\n\u003Ch4>Spam FireWall: Anti-Flood & Anti-Crawler\u003C\u002Fh4>\n\u003Cp>Spam FireWall: Anti-Flood and Anti-Crawler options are intended for blocking unwanted bots, content parsing, shop goods prices parsing or aggressive website scanning bots. Learn more https:\u002F\u002Fcleantalk.org\u002Fhelp\u002Fanti-flood-and-anti-crawler\u003C\u002Fp>\n\u003Ch4>How to protect sites from spam bots without CAPTCHA?\u003C\u002Fh4>\n\u003Cp>The most popular anti-spam method is CAPTCHA – the annoying picture with curved and sloping symbols, which are presented to the visitor to decipher and fill in. In is supposed that spam bots won’t discern these CAPTCHA, but a visitor will. CAPTCHA provokes great irritation, but if the visitor wants to comment, he has to fill in these symbols time after time, making mistakes and starting once again. Sometimes CAPTCHA reminds us of the doodles of a two year old child. For users with vision problems CAPTCHA is an insurmountable obstacle. Users hate captcha. Captcha for users means “hate”. Unreadable CAPTCHA stops about 80% of site visitors. After 2 failed attempts to decipher CAPTCHA 95% of visitors reject further attempts. At the sight of CAPTCHA and after input errors, many visitors leave the resource. Thus, CAPTCHA helps to protect the resource spam both from bots and visitors. CAPTCHA is not a panacea from spam. Doubts concerning the Need for CAPTCHA?\u003C\u002Fp>\n\u003Cp>\u003Cem>“Ultimately, CAPTCHAs are useless for spam because they’re designed to tell you if someone is ‘human’ or not, but not whether something is spam or not.” Matt Mullenweg\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>You do not have to work in IT to know what spam is. Besides piles of unwanted email, there are spam bots, or special software programs designed to act as human website visitors that post unwelcome messages over the Internet to advertise dubious services. More often than not spam messages do not even make sense. Similar to bacteria and virus mutations developing antibiotic resistance, spam bots are becoming more resilient in penetrating Internet firewalls and security layers.\u003C\u002Fp>\n\u003Ch4>Real-time email validation. Is email real or Not.\u003C\u002Fh4>\n\u003Cp>It is very important to be sure that the user used his real email address. Spambots very often use fake email addresses, i.e. which addresses do not exist.\u003C\u002Fp>\n\u003Cp>CleanTalk will check email addresses for existence in real time.\u003C\u002Fp>\n\u003Cp>Non-existing email addresses also entail several other problems for website owners.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>You can never contact them by email,\u003C\u002Fli>\n\u003Cli>the client will never receive any notifications from you (account activation letter, password recovery, email distribution, notifications, etc.),\u003C\u002Fli>\n\u003Cli>if you use email marketing for your clients, then a large number of nonexistent emails in the mailing list may result in your IP address being added to various blacklists of email servers.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Improve your email list with email validation without fake emails.\u003C\u002Fp>\n\u003Ch4>Blocking  disposable & temporary emails\u003C\u002Fh4>\n\u003Cp>Block fake and suspicious users with disposable & temporary emails to improve email delivery. So, it also prevents malicious activity, spam bots, and internet trolls.\u003C\u002Fp>\n\u003Ch4>Latest and the most SPAM active IPs, Emails, Domains and ASN\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>yawiviseya67@gmail.com\u003C\u002Fli>\n\u003Cli>xrumer888@outlook.com\u003C\u002Fli>\n\u003Cli>irinademenkova86@gmail.com\u003C\u002Fli>\n\u003Cli>zekisuquc419@gmail.com\u003C\u002Fli>\n\u003Cli>prince@stopformspam.xyz\u003C\u002Fli>\n\u003Cli>191.101.217.24\u003C\u002Fli>\n\u003Cli>199.167.138.22\u003C\u002Fli>\n\u003Cli>178.159.37.17\u003C\u002Fli>\n\u003Cli>185.190.42.200\u003C\u002Fli>\n\u003Cli>45.133.172.23\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Effective date is July 13th, 2025. Real-time data is available at \u003Ca href=\"https:\u002F\u002Fcleantalk.org\u002Fblacklists\" rel=\"nofollow ugc\">https:\u002F\u002Fcleantalk.org\u002Fblacklists\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Stops Spam in Search Form\u003C\u002Fh4>\n\u003Cp>Spam bots can use your search form to make a GET request with spam text. CleanTalk Anti-Spam has the option to protect your website search form from spam bots. Each time, the search generates a new page and if there are many requests, this can create additional load. So, under some conditions, spam searches can be indexed, which affects SEO,\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Anti-Spam protection for website search forms repels spambots.\u003C\u002Fli>\n\u003Cli>If your search form gets data too often the CleanTalk Anti-Spam plugin will add a pause and increase it with each new attempt to send data. It saves your web server processor time.\u003C\u002Fli>\n\u003Cli>Spam protection allows you to not forbid indexation for the crawler bots if you really need it but simultaneously you will get protection from spambots.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You will always know what users were looking for on your site.\u003C\u002Fp>\n\u003Ch4>Disable comments\u003C\u002Fh4>\n\u003Cp>This option disables comments on your site. You can choose one or several options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable comments for posts\u003C\u002Fli>\n\u003Cli>Disable comments for pages\u003C\u002Fli>\n\u003Cli>Disable comments for media\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>When using Disables comments, existing comments will not be deleted and will remain on the pages.\u003C\u002Fp>\n\u003Ch4>Email, Phones Address Encoder\u003C\u002Fh4>\n\u003Cp>CleanTalk Anti-Spam offers a feature called “Encode contact data” that is designed to encode all email addresses on the website pages. Encoding email, phontes addresses increases the level of protection of contact data from being abused, parsed, getting spammed and used in spam mailing lists by bots and online criminals. To reveal the encoded email address simply click on it and it will be decoded instantly.\u003C\u002Fp>\n\u003Ch4>Will the anti-spam plugin protect my theme?\u003C\u002Fh4>\n\u003Cp>Yes, it will. The Anti-spam by CleanTalk is compatible with any WordPress theme.\u003C\u002Fp>\n\u003Ch4>Should I use other anti-spam tools (Captcha, reCaptcha and etc.)?\u003C\u002Fh4>\n\u003Cp>CleanTalk stops up to 99.998% of spam bots, so you can disable other anti-spam plugins (especially CAPTCHA-type anti-spam plugins). In some cases several anti-spam plugins could conflict with each other.\u003C\u002Fp>\n\u003Ch4>Honeypot field\u003C\u002Fh4>\n\u003Cp>The option helps to block bots. The honeypot field option adds a hidden field to the form. When spambots come to a website form, they can fill out each input field. Enable this option to make the protection stronger on these forms. Learn more about supported forms here.\u003C\u002Fp>\n","Blocks spam comments, fake users, contact form spam and more. No impact on SEO. Privacy focused. CAPTCHA free, premium Antispam plugin.",200000,23079562,3170,"2026-03-05T10:25:00.000Z","4.7",[19,114,20,72,73],"captcha","https:\u002F\u002Fcleantalk.org","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcleantalk-spam-protect.6.74.zip",76,13,"2026-02-14 14:21:19",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":130,"num_ratings":11,"last_updated":131,"tested_up_to":132,"requires_at_least":133,"requires_php":134,"tags":135,"homepage":140,"download_link":141,"security_score":142,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"recaptcha-in-wp-comments-form","reCAPTCHA in WP comments form","9.1.2","jmviade","https:\u002F\u002Fprofiles.wordpress.org\u002Fjmviade\u002F","\u003Cp>reCAPTCHA in WP comments form plugin is an \u003Cstrong>ANTISPAM tool\u003C\u002Fstrong> that adds the visible Google \u003Cstrong>reCAPTCHA field\u003C\u002Fstrong> inside the comments form of your WP theme when the user is not logged in preventing fraudulent or deceptive comments.\u003C\u002Fp>\n\u003Cp>The plugin also \u003Cstrong>introduces a second verification process\u003C\u002Fstrong> that detects the unauthorized direct accesses by spam robots to the WP comments system and allows you to decide what do you want to do with those comments.\u003C\u002Fp>\n\u003Cp>Finally, the plugin has got an optional \u003Cstrong>forced javascript output mode\u003C\u002Fstrong> that lets you to add a reCAPTCHA field \u003Cstrong>also in old WP themes\u003C\u002Fstrong> that didn’t use the new WP form comments functions but they make a direct output of its own comments form.\u003C\u002Fp>\n\u003Ch4>FEATURES LIST\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Basic Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>All variants\u003C\u002Fstrong> of Google reCAPTCHA field are available\u003C\u002Fli>\n\u003Cli>Two simple steps \u003Cstrong>Installation Wizard\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Automatic \u003Cstrong>default configuration settings\u003C\u002Fstrong> for all plugin components\u003C\u002Fli>\n\u003Cli>Automatic default configuration for reCAPTCHA field\u003C\u002Fli>\n\u003Cli>Configuration settings for Plugin \u003C\u002Fli>\n\u003Cli>Configuration settings for \u003Cstrong>ANTISPAM operation\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Four modes of operation in case of spam robots threats (SPAM, TRASH, DELETE or DIE)\u003C\u002Fli>\n\u003Cli>Visual configuration settings for Google reCAPTCHA: theme, size, type, align, language\u003C\u002Fli>\n\u003Cli>Dynamic comments form sample for viewing configuration settings changes\u003C\u002Fli>\n\u003Cli>Visual Help\u003C\u002Fli>\n\u003Cli>RTL Language support\u003C\u002Fli>\n\u003Cli>Admin Color scheme adapted\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Middle features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Forced language option for reCAPTCHA field\u003C\u002Fli>\n\u003Cli>Plugin \u003Cstrong>blocks the submit button\u003C\u002Fstrong> while reCAPTCHA field is not verified\u003C\u002Fli>\n\u003Cli>Plugin \u003Cstrong>changes HTML structure of the comments form\u003C\u002Fstrong> to prevent malicious automatic sendings while reCAPTCHA field is not verified\u003C\u002Fli>\n\u003Cli>Plugin also blocks \u003Cstrong>other elements with \u003Ccode>[type=submit]\u003C\u002Fcode> inside form\u003C\u002Fstrong> in case of a theme customized comments form\u003C\u002Fli>\n\u003Cli>Plugin lets you to write your own \u003Cstrong>additional CSS for the reCAPTCHA field\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>New \u003Cstrong>restore default value buttons\u003C\u002Fstrong> in plugin configuration section for helping you in case of changing WP theme, accidental errors, test environtments, etc.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Advanced features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>reCAPTCHA \u003Cstrong>verification process via AJAX before submitting the form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Second security checking process\u003C\u002Fstrong> for preventing any security breach \u003Cstrong>before saving the comment\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Supporting \u003Cstrong>four different WP comments form HTML structure types\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Advanced plugin options \u003Cstrong>based on HTML queries\u003C\u002Fstrong> for inserting the reCAPTCHA plugin in all kinds of WP themes\u003C\u002Fli>\n\u003Cli>Optional \u003Cstrong>Forced javascript output\u003C\u002Fstrong> that allows you to use the plugin with old WP themes that didn’t use function \u003Ccode>comment_form()\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Advanced ID’s tags settings for using this plugin with WP Themes that creates its own comments form HTML struct\u003C\u002Fli>\n\u003Cli>reCAPTCHA javascript initialization that prevents reCAPTCHA conflicts in case of that other plugins use reCAPTCHA.\u003C\u002Fli>\n\u003Cli>New mínimum CSS styles for recaptcha alignment\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>PLUGIN PAGE\u003C\u002Fh4>\n\u003Cp>To learn more about the plugin, visit the \u003Ca href=\"http:\u002F\u002Fwww.joanmiquelviade.com\u002Fplugin\u002Fgoogle-recaptcha-in-wp-comments-form\u002F\" title=\"Author's plugin page\" rel=\"nofollow ugc\">Plugin page\u003C\u002Fa>.\u003C\u002Fp>\n","reCAPTCHA in WP comments form is an ANTISPAM tool that adds a Google reCAPTCHA to the comments form and protects your site from the spam robots threat &hellip;",9000,72788,82,"2019-04-22T12:10:00.000Z","5.1.22","4.0.0","",[19,136,137,138,139],"antispam-protection","comments-antispam","comments-recaptcha","recaptcha","http:\u002F\u002Fwww.joanmiquelviade.com\u002Fplugin\u002Fgoogle-recaptcha-in-wp-comments-form\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frecaptcha-in-wp-comments-form.9.1.2.zip",85,{"attackSurface":144,"codeSignals":225,"taintFlows":296,"riskAssessment":297,"analyzedAt":307},{"hooks":145,"ajaxHandlers":202,"restRoutes":212,"shortcodes":213,"cronEvents":214,"entryPointCount":77,"unprotectedCount":77},[146,152,156,160,164,167,172,176,180,184,189,193,197,200],{"type":147,"name":148,"callback":149,"file":150,"line":151},"action","admin_init","redirectToPanel","tolstoycomments.php",35,{"type":147,"name":153,"callback":154,"file":150,"line":155},"admin_menu","addPagesToAdminMenu",36,{"type":147,"name":157,"callback":158,"file":150,"line":159},"admin_enqueue_scripts","assets",37,{"type":147,"name":161,"callback":162,"file":150,"line":163},"plugins_loaded","textdomain",41,{"type":147,"name":148,"callback":165,"file":150,"line":166},"fields",44,{"type":168,"name":169,"callback":170,"file":150,"line":171},"filter","comments_template","commentsTemplate",46,{"type":168,"name":173,"callback":174,"file":150,"line":175},"comments_number","commentsCount",47,{"type":168,"name":177,"callback":178,"file":150,"line":179},"get_comments_number","commentsCountRaw",48,{"type":168,"name":181,"callback":182,"file":150,"line":183},"wp_footer","commentsMain",49,{"type":168,"name":185,"callback":186,"priority":187,"file":150,"line":188},"render_block","overrideCommentsBlock",10,50,{"type":147,"name":190,"callback":191,"file":150,"line":192},"wp_enqueue_scripts","enqueueAssets",52,{"type":147,"name":194,"callback":195,"file":150,"line":196},"tolstoycomments_cron_task","init",54,{"type":147,"name":198,"callback":195,"file":150,"line":199},"tolstoycomments_cron_task_queue",55,{"type":168,"name":195,"callback":195,"file":150,"line":201},57,[203,208],{"action":204,"nopriv":205,"callback":206,"hasNonce":205,"hasCapCheck":205,"file":150,"line":207},"tolstoycomments_count",false,"getCommentsCount",38,{"action":209,"nopriv":205,"callback":210,"hasNonce":205,"hasCapCheck":205,"file":150,"line":211},"tolstoycomments_export_start","startExportTask",39,[],[],[215,217,220,222],{"hook":198,"callback":198,"file":216,"line":201},"src\\Admin.php",{"hook":198,"callback":198,"file":218,"line":219},"src\\Export.php",145,{"hook":194,"callback":194,"file":218,"line":221},158,{"hook":194,"callback":194,"file":223,"line":224},"src\\Plugin.php",27,{"dangerousFunctions":226,"sqlUsage":227,"outputEscaping":230,"fileOperations":13,"externalRequests":31,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":295},[],{"prepared":228,"raw":13,"locations":229},7,[],{"escaped":231,"rawEcho":155,"locations":232},5,[233,236,238,240,242,245,247,248,249,251,253,254,255,256,257,258,259,261,263,265,267,269,271,273,275,278,279,280,282,283,285,287,289,290,292,294],{"file":223,"line":234,"context":235},124,"raw output",{"file":223,"line":237,"context":235},127,{"file":223,"line":239,"context":235},130,{"file":223,"line":241,"context":235},133,{"file":243,"line":244,"context":235},"src\\SettingsFields.php",14,{"file":243,"line":246,"context":235},17,{"file":243,"line":11,"context":235},{"file":243,"line":32,"context":235},{"file":243,"line":250,"context":235},33,{"file":243,"line":252,"context":235},43,{"file":243,"line":252,"context":235},{"file":243,"line":171,"context":235},{"file":243,"line":183,"context":235},{"file":243,"line":183,"context":235},{"file":243,"line":192,"context":235},{"file":243,"line":192,"context":235},{"file":243,"line":260,"context":235},56,{"file":243,"line":262,"context":235},64,{"file":243,"line":264,"context":235},67,{"file":243,"line":266,"context":235},70,{"file":243,"line":268,"context":235},80,{"file":243,"line":270,"context":235},91,{"file":243,"line":272,"context":235},95,{"file":243,"line":274,"context":235},105,{"file":276,"line":277,"context":235},"templates\\commentsMain.php",9,{"file":276,"line":246,"context":235},{"file":276,"line":11,"context":235},{"file":276,"line":281,"context":235},23,{"file":276,"line":224,"context":235},{"file":276,"line":284,"context":235},58,{"file":286,"line":187,"context":235},"templates\\settings.php",{"file":286,"line":288,"context":235},15,{"file":286,"line":11,"context":235},{"file":286,"line":291,"context":235},21,{"file":286,"line":293,"context":235},25,{"file":286,"line":293,"context":235},[],[],{"summary":298,"deductions":299},"The 'tolstoy-comments' plugin version 2.4.1 presents a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries, avoiding file operations, and having no known vulnerabilities in its history. The absence of bundled libraries also removes a common attack vector. However, significant concerns arise from its attack surface.  The plugin exposes two AJAX handlers, both of which lack authentication checks, creating direct entry points for malicious actors. Furthermore, the lack of nonce checks on these AJAX actions is a critical oversight, leaving them susceptible to Cross-Site Request Forgery (CSRF) attacks.  The limited output escaping (12% properly escaped) is also a notable weakness, potentially leading to Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not adequately sanitized before display. The plugin's vulnerability history being clear is positive, but it doesn't negate the present security weaknesses identified in the code analysis. Overall, while the plugin avoids some common pitfalls, the unprotected AJAX endpoints and poor output escaping significantly elevate the risk.",[300,302,304],{"reason":301,"points":187},"AJAX handlers without authentication",{"reason":303,"points":187},"Missing nonce checks on AJAX handlers",{"reason":305,"points":306},"Low percentage of properly escaped output",8,"2026-03-16T23:02:54.212Z",{"wat":309,"direct":316},{"assetPaths":310,"generatorPatterns":313,"scriptPaths":314,"versionParams":315},[311,312],"\u002Fwp-content\u002Fplugins\u002Ftolstoy-comments\u002Fassets\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Ftolstoy-comments\u002Fassets\u002Fadmin.css",[],[311],[],{"cssClasses":317,"htmlComments":320,"htmlAttributes":321,"restEndpoints":325,"jsGlobals":327,"shortcodeOutput":328},[318,319],"tolstoycomments-cc","awaiting-mod",[],[322,323,324],"data-tolstoycomments","data-identity","data-url",[326],"\u002Fwp-json\u002Ftolstoycomments",[],[]]