Does Tornevall Networks DNSBL Implementation have any unpatched vulnerabilities?

No. All known vulnerabilities in Tornevall Networks DNSBL Implementation have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Tornevall Networks DNSBL Implementation compatible with WordPress 6.9.4?

According to WordPress.org data, Tornevall Networks DNSBL Implementation 3.0.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Tornevall Networks DNSBL Implementation compatible with PHP 8.1+?

Tornevall Networks DNSBL Implementation requires PHP 8.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Tornevall Networks DNSBL Implementation updated?

Tornevall Networks DNSBL Implementation was last updated on Mar 15, 2026. Frequent updates are generally a positive security signal.

What is Tornevall Networks DNSBL Implementation's security score?

Tornevall Networks DNSBL Implementation has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Tornevall Networks DNSBL Implementation Security & Risk Analysis

wordpress.org/plugins/tornevall-networks-dnsbl-implementation

Tornevall Networks DNSBL implementation with FraudBL support for WordPress

10 active installs v3.0.3 PHP 8.1+ WP 5.8+ Updated Mar 15, 2026

antispamblacklistcomment-spamfrauduser-registration

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Tornevall Networks DNSBL Implementation Safe to Use in 2026?

Generally Safe

Score 100/100

Tornevall Networks DNSBL Implementation has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 19d ago

Risk Assessment

The "tornevall-networks-dnsbl-implementation" plugin version 3.0.3 presents a mixed security posture. On the positive side, it exhibits no known critical vulnerabilities, has a history free of recorded CVEs, and demonstrates good practices in SQL query preparation and output escaping. The absence of file operations and dangerous functions is also a positive indicator. However, a significant concern is the presence of a single AJAX handler that lacks authentication checks, representing a direct unprotected entry point. While taint analysis shows no unsanitized paths, this unprotected AJAX endpoint could potentially be exploited if it processes user-supplied data without proper validation, leading to unintended actions or information disclosure.

Key Concerns

Unprotected AJAX handler
Moderate unescaped output percentage

Vulnerabilities

None known

Tornevall Networks DNSBL Implementation Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Tornevall Networks DNSBL Implementation Code Analysis

Dangerous Functions

Raw SQL Queries

14 prepared

Unescaped Output

156 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

78% prepared18 total queries

Output Escaping

72% escaped217 total outputs

Data Flows

All sanitized

Data Flow Analysis

3 flows

<class-dnsbl-admin> (includes\class-dnsbl-admin.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Tornevall Networks DNSBL Implementation Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_tornevall_dnsbl_admin_toolsincludes\class-dnsbl-plugin.php:21

WordPress Hooks 23

filtercron_schedulesincludes\class-dnsbl-plugin.php:16

actionadmin_enqueue_scriptsincludes\class-dnsbl-plugin.php:17

actionplugins_loadedincludes\class-dnsbl-plugin.php:18

actioninitincludes\class-dnsbl-plugin.php:19

actioninitincludes\class-dnsbl-plugin.php:20

actionadmin_post_tornevall_dnsbl_whitelist_current_visitorincludes\class-dnsbl-plugin.php:22

actionadmin_post_tornevall_dnsbl_toggle_frontend_dry_runincludes\class-dnsbl-plugin.php:23

actionadmin_noticesincludes\class-dnsbl-plugin.php:24

actionadmin_noticesincludes\class-dnsbl-plugin.php:25

actionadmin_bar_menuincludes\class-dnsbl-plugin.php:26

actiontornevall_dnsbl_cache_cleanupincludes\class-dnsbl-plugin.php:27

actionwp_footerincludes\class-dnsbl-plugin.php:28

filterthe_contentincludes\class-dnsbl-plugin.php:30

filtercomments_openincludes\class-dnsbl-plugin.php:31

filtercomments_arrayincludes\class-dnsbl-plugin.php:32

filterpreprocess_commentincludes\class-dnsbl-plugin.php:33

filterpre_comment_approvedincludes\class-dnsbl-plugin.php:34

actioncomment_form_after_fieldsincludes\class-dnsbl-plugin.php:35

actioncomment_form_logged_in_afterincludes\class-dnsbl-plugin.php:36

actionregister_formincludes\class-dnsbl-plugin.php:37

filterregistration_errorsincludes\class-dnsbl-plugin.php:38

actionadmin_menutornevall-wp-dnsbl.php:39

actionadmin_inittornevall-wp-dnsbl.php:40

Maintenance & Trust

Tornevall Networks DNSBL Implementation Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 15, 2026

PHP min version8.1

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Tornevall Networks DNSBL Implementation Alternatives

Maspik – Ultimate Spam Protection

contact-forms-anti-spam

No more fake leads or unwanted submissions — Maspik blocks spam instantly across all forms without using CAPTCHA.

30K 8 CVEs

Fraud Prevention For WooCommerce and EDD

woo-blocker-lite-prevent-fake-orders-and-blacklist-fraud-customers

It will Prevent fake orders and Blacklist fraud customers of your store.

5K 2 CVEs

Block List Updater

blacklist-updater

100

Automatic updating of the comment block list in WordPress with antispam keys from GitHub.

4K No CVEs

Blacklist Manager – WooCommerce Anti-Fraud & Checkout Verification & Spam Prevention

wc-blacklist-manager

100

Anti-fraud, checkout verification and spam prevention plugin for WooCommerce and WordPress forms.

2K No CVEs

Human Presence – Stop Form Spam Without ReCaptcha

ellipsis-human-presence-technology

The #1 Plugin for Blocking Form Spam on WordPress

1K 1 CVE

Developer Profile

Tornevall Networks DNSBL Implementation Developer Profile

tornevall

1 plugin · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Tornevall Networks DNSBL Implementation

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/tornevall-networks-dnsbl-implementation/assets/css/admin.css/wp-content/plugins/tornevall-networks-dnsbl-implementation/assets/js/admin.js/wp-content/plugins/tornevall-networks-dnsbl-implementation/assets/js/turnstile.js

Script Paths

/wp-content/plugins/tornevall-networks-dnsbl-implementation/assets/js/admin.js/wp-content/plugins/tornevall-networks-dnsbl-implementation/assets/js/turnstile.js

Version Parameters

tornevall-networks-dnsbl-implementation/assets/css/admin.css?ver=tornevall-networks-dnsbl-implementation/assets/js/admin.js?ver=tornevall-networks-dnsbl-implementation/assets/js/turnstile.js?ver=

HTML / DOM Fingerprints

CSS Classes

tornevall-dnsbl-admin-toolstornevall-dnsbl-admin-noticetornevall-dnsbl-frontend-dry-run-banner

HTML Comments

Data Attributes

data-tornevall-dnsbl-admin-tools-nonce

JS Globals

tornevall_dnsbl_admin_tools_ajax_objecttornevall_dnsbl_turnstile_options

REST Endpoints

/wp-json/tornevall/dnsbl/v1/admin-tools

FAQ