WordPress.org

Taqbaylit

Get WordPress
WordPress.org

Plugin Directory

CaptchaFox for WordPress

CaptchaFox for WordPress

By Scoria Labs GmbH
Download

Description

CaptchaFox defends and safeguards your website against automated attacks such as account takeover, spam, scalping, and web scraping, while adhering to EU data protection regulations.

It utilizes a variety of data signals and challenges to verify the authenticity of the user without the use of cookies or trackers.
The challenges have low friction and are easily solvable for humans, but difficult for bots. With the one-click challenge, legitimate users don’t even know they’re being challenged.

This plugin comes with out-of-the-box support for popular form plugins, such as Contact Forms 7, WPForms, Woocommerce, Mailchimp, and more. Therefore, no developer experience is required.

To get started, login or create an account at portal.captchafox.com and locate your keys.
See the available plans and pricing for more advanced features and additional support.

Supported Forms and Plugins

  • WordPress Login
  • WordPress Registration
  • WordPress Password Reset
  • WordPress Comments
  • Elementor Forms
  • Gravity Forms
  • WP Forms Lite
  • Contact Form 7
  • Ninja Forms
  • Ninja Forms Multi Step
  • Woocommerce Checkout
  • Woocommerce Login
  • Woocommerce Registration
  • Woocommerce Password Reset
  • Mailchimp for WordPress
  • Forminator
  • BBPress New Topic
  • BBPress Reply
  • Otter Blocks
  • Fluent Forms
  • Avada Forms

Spam Protection

On top of the captcha, the plugin offers optional protection layers that can be configured under Settings > CaptchaFox > Security:

  • Honeypot field for bots that auto-fill forms
  • Minimum submission time (time trap)
  • IP allowlist and denylist
  • Skip the captcha for logged-in users
  • Login attempt throttling
  • Privacy-friendly spam statistics with anonymized IP and user agent data

Privacy Notices

CaptchaFox is compliant with various privacy laws, such as GDPR, CCPA, and others.

This plugin does not use cookies, track users, store personal data or communicate with external services that are not required for verification.

Once the plugin is activated, the CaptchaFox service may receive the user’s IP address and browser vendor data while protecting enabled pages. However, CaptchaFox is designed to reduce the use of data and to dispose of it as soon as the verification request is processed.

To learn more, please read the privacy policy at captchafox.com/privacy.

Screenshots

WordPress Login
WordPress Login
WordPress Comment
WordPress Comment
Contact Form
Contact Form
General Settings
General Settings
Manage Plugins
Manage Plugins
Security Tools
Security Tools

Installation

  1. Install the plugin via the WordPress.org plugin repository or upload the captchafox-for-forms folder to the /wp-content/plugins/ directory.
  2. Activate the plugin on the Plugins page (Plugins > Installed Plugins).
  3. Enter your Site Key and Secret Key in the General settings tab (Settings > CaptchaFox)
  4. Enable CaptchaFox for your installed form plugins (Settings > CaptchaFox > Plugins)

FAQ

Where do I find my keys?

You can find your site key and secret key in the Portal.

How do I set the widget language, theme or mode?

Use these filters to override the widget options:
capf_language – Widget language (see language codes).
capf_theme – Widget theme.
capf_mode – Display mode.
capf_delay – Load the API script only on the first user interaction.

Example

/**
* Filters the CaptchaFox language setting.
*
* @param string $language Language.
*/
function set_custom_language( $language ) {
  return 'YOUR_LANGUAGE_CODE'; // see https://docs.captchafox.com/language-codes for available codes
}

add_filter( 'capf_language', 'set_custom_language' );

How do I configure the spam protection in code?

Every Security tab option has a matching filter:
capf_honeypot – Enable or disable the honeypot.
capf_min_time – Minimum submission time in seconds.
capf_allowlist / capf_denylist – Arrays of allowlisted / denylisted IPs or CIDR ranges.
capf_ip_allowed / capf_ip_denied – Final allow / deny decision for the current visitor IP (bool).
capf_client_ip – Override the detected visitor IP address.
capf_skip_logged_in – Enable or disable skipping logged-in users.
capf_user_exempt – Final exemption decision for the current user (bool).
capf_login_limit – Failed login attempts before the captcha is shown.
capf_login_interval – Minutes that failed login attempts are counted.

How do I change the message shown when verification fails?

Use the capf_error_message filter:

/**
* Customize the message shown when verification fails.
*
* @param string $message Message.
*/
function custom_captcha_error( $message ) {
  return 'Please confirm you are human.';
}

add_filter( 'capf_error_message', 'custom_captcha_error' );

How do I control which statistics are recorded?

  • capf_record_events – Enable or disable statistics recording.
  • capf_collect_ip – Store the raw IP instead of an anonymized hash.
  • capf_collect_user_agent – Store the raw user agent instead of an anonymized hash.
  • capf_event_form_id – Override the detected form id stored with an event.

Where can I learn more about CaptchaFox?

Visit the website to find more information about CaptchaFox.

Reviews

Not helpful!

1 Γuct 2024 1 reply
When activate a plugin, you could see a settings with « Configure the settings for the CaptchaFox widget. Don’t have a site key? Click here to create an account ». And it linked to a dead link « portal.captchafox.com » (not working URL). This plugin has too simple settings, and no helpful document to make it works. 2 first 5 stars reviews seems was fake by their team which violates a rule of WordPress community.

GDPR compliant and stops bots

8 Yennayer 2024
I needed a GDPR-compliant solution and captcha fox fully meets this requirement. The setup was easy and it runs flawlessly. In some quick tests I did, it was effective at detecting automated requests, such as bots.

Best reCaptcha alternative!

27 Dujember 2023
We needed a privacy-compliant alternative to reCaptcha and CaptchaFox ticked all the boxes. It protects us from spam and bots without any problems. Highly recommended if you are looking to switch.
Read all 3 reviews

Contributors & Developers

“CaptchaFox for WordPress” is open source software. The following people have contributed to this plugin.

Contributors

“CaptchaFox for WordPress” has been translated into 1 locale. Thank you to the translators for their contributions.

Translate “CaptchaFox for WordPress” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

Changelog

2.0.0

  • New security tools for honeypot, IP rules, login protection, and logged-in user bypass.
  • New opt-in statistics with anonymized events
  • New status page for setup, integration, and connectivity checks.
  • Improved Elementor 4.x support, including optimized/deferred script loading.
  • Improved API failure handling and settings validation

1.13.0

  • Tested on WordPress 7.0
  • Update for Elementor 4.0

1.12.0

  • Moved plugin settings to main menu
  • Fixed comment verification

1.11.0

  • Tested on WordPress 6.8

1.10.1

  • Fix WPForms checkbox on the settings page

1.10.0

  • Support Gravity Forms

1.9.0

  • Add filters to override options programmatically

1.8.0

  • Support Elementor Forms

1.7.0

  • Tested on WooCommerce 9.0
  • Tested on WordPress 6.6
  • Fix widget not appearing on WordPress register page

1.6.0

  • Tested on WooCommerce 8.7
  • Support Avada Forms

1.5.0

  • Support Fluent Forms

1.4.0

  • Tested on WooCommerce 8.6
  • Tested on WordPress 6.5

1.3.0

  • Tested on WooCommerce 8.5
  • Support Ninja Forms Multi Step
  • Add theme option

1.2.0

  • Add support for Otter Blocks

1.1.0

  • Add support for NinjaForms

1.0.0

  • Plugin Created

Meta

Ratings

3.7 out of 5 stars.

Your review

See all reviews

Contributors

Support

Got something to say? Need help?

View support forum