OOPSpam Anti-Spam

Description

OOPSpam WordPress plugin is a next-generation spam filter for WordPress that uses advanced methods to analyze every comment and contact form submission. Our algorithms, including machine learning models, cross-check each submission against our database to detect and prevent spam.

It uses the OOPSpam API, which protects over 1M websites daily.

Features:

  • Customize the “sensitivity level” of spam filtering so you don’t miss important messages
  • Checks messages using a machine learning model
  • Country restrictions
  • Language restrictions
  • Automatically checks against multiple IP & email blacklists
  • Automatically detects spam word patterns
  • [Privacy] Do not analyze IP addresses setting
  • [Privacy] Do not analyze Emails setting.
  • [Privacy] Remove sensitive information from messages setting
  • Form Spam Entries: view spam entries, delete or report them to us.
  • Form Ham Entries: view not spam entries, delete or report them to us.
  • and many custom rules, advanced analysis to detect and mark as spam

The value we bring:

  • Fast, Lightweight & Accessible
  • No cookies, no challenges, no javascript, no tracking
  • High accuracy (%99.9)
  • Use one API key with unlimited websites
  • No data stored on our servers. All your data is stored in your local WordPress database.
  • Privacy by design
  • Well tested so it will NOT break your website with every update
  • Transparent and responsible company. We have an active vulnerability disclosure program.
  • Support (24 hour response)

The plugin filters both comments, site search, and contact form submissions.

Supported form & comment solutions:

  • WooCommerce Order & Registration
  • Elementor Forms
  • Ninja Forms
  • Gravity Forms
  • Kadence Form Block
  • Fluent Forms
  • Breakdance Forms
  • WS Form
  • WPDiscuz
  • Forminator
  • WPForms
  • Formidable Forms
  • Contact Form 7
  • Bricks Forms
  • Toolset Forms
  • Piotnet Forms
  • GiveWP Donation Forms
  • MailPoet

OOPSpam Anti-Spam WordPress plugin requires minimal configuration. The only thing you need to do is to get a key and paste it into the appropriate setting field under Settings=>OOPSpam Anti-Spam. If you have a contact form plugin, make sure you enable spam protection on the settings page.

Please note: This is a premium plugin. You need an OOPSpam Anti-Spam API key to use the plugin. Each account comes with 40 free spam checks per month.
If you already use OOPSpam on other platforms, you can use the same API key for this plugin.

Screenshots

  • OOPSpam admin settings
  • Spam Entries from contact forms

Installation

You can install OOPSpam Anti-Spam plugin both from your WordPress admin dashboard and manually.

INSTALL OOPSpam Anti-Spam FROM WITHIN WORDPRESS

  1. Visit the plugins page within your dashboard and select ‘Add New’;
  2. Search for ‘oopspam’;
  3. Activate OOPSpam Anti-Spam from your Plugins page;
  4. Go to OOPSpam Anti-Spam=>Settings

INSTALL OOPSpam Anti-Spam MANUALLY

  1. Upload the ‘oopspam-anti-spam’ folder to the /wp-content/plugins/ directory;
  2. Activate the OOPSpam Anti-Spam plugin through the ‘Plugins’ menu in WordPress;
  3. Go to OOPSpam Anti-Spam=>Settings

AFTER ACTIVATION

Using the plugin requires you to have an OOPSpam API key. You can get one from here.
Once you have a key, copy it and paste into OOPSpam API key field under OOPSpam Anti-Spam=>Settings

FAQ

Where do I report security bugs found in this plugin?

Please report security bugs found in the source code of this plugin through the Patchstack Vulnerability Disclosure Program. The Patchstack team will assist you with verification, CVE assignment, and notify the developers of this plugin.

Reviews

སྤྱི་ཟླ་བཅུ་གཉིས་པ། 1, 2023
This is a great plugin for stopping spam being sent via email contact forms and all messages can be displayed to check they have been classified correctly as spam or not spam (they can also be re-classified if necessary but in my experience that doesn't happen very often). If you're looking for a way to reduce the amount of spam being sent via the contact forms on your website, I highly recommend this plugin. And the support team are very responsive as well!
སྤྱི་ཟླ་བཅུ་གཅིག་པ། 14, 2023
Coming from Cleantalk (and a brief period of Akismet). That one did the job, but throughout a few years they had their share of problems and I really never got the peace of mind I was looking for. So enter OOPSpam. OOPSpam has turned out great so far. The setup is a quick minute or so per website and you're good to go. Consider the time you need to setup something like Cloudflare Turnstile or Google captcha, and with these solutions you don't even have a decent log file. With OOPSpam you get just the options you need, no more, no less. With Cleantalk it's a long page full of options. And honestly, I'm just looking for something that just works. OOPSpam has a great log right in the admin area of your website. In case of any false positive or negative, you can report it directly from the log. Last but not least, OOPSpam seems to have compatibility with nearly every form software available on the market, whether it's native Elementor/Breakdance or a tool like WPForms – it seems to support them all.
སྤྱི་ཟླ་བཅུ་པ། 13, 2023
Been using Askimet, but they only filter comments. So, downloaded this plugin to test since I'm going crazy manually dealing with spam registrations. And this plugin worked beautifully!
སྤྱི་ཟླ་ལྔ་པ། 15, 2023
I tried this as an alternative to Akismit on 40 or so sites I maintain. Now that it's been a few months, I can say I'm very happy with the usable data and tools provided to me. It's eliminated all spam, and even the need for Captcha. I like being able to solve my own problems, and I've learned a lot about spam control since installing this! Great plugin, highly recommend.
སྤྱི་ཟླ་གསུམ་པ། 28, 2023
I run a small website development agency and had a lot of complaints from clients about spam submissions. After trying honeypots and Google reCAPTCHAs, a large amount of spam was still coming in. I gave Oopspam a shot and it worked really well, I actually just upgraded my plan. I would recommend this plugin for reducing the number of spam emails you or your clients have to go through.
Read all 14 reviews

Contributors & Developers

“OOPSpam Anti-Spam” is open source software. The following people have contributed to this plugin.

Contributors

Translate “OOPSpam Anti-Spam” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

Changelog

1.1.55

  • IMPROVEMENT: A better way to prevent empty messages from passing through

1.1.54

  • NEW: Trackback and Pingback protection
  • NEW: WP comment logs are available under the Form Spam/Ham Entries tables.

1.1.53

  • FIX: WP_Query warning in the search protection

1.1.52

  • MISC: Compatibility tested with WP 6.4

1.1.51

  • IMPROVEMENT: Bricks Form integration doesn’t require to add custom action.

1.1.50

  • NEW: Breakdance Forms support
  • FIX: Failed nonce verification in cron jobs that empty spam/ham entries

1.1.49

  • NEW: Quickly add spam countries in Block countries setting
  • FIX: Make WP site search protection optional
  • FIX: Avoid multiple API calls when searching

1.1.48

  • NEW: Block countries

1.1.47

  • NEW: WP site search protection
  • IMPROVEMENT: Tested with WP 6.3

1.1.46

  • IMPROVEMENT: Include the current Sensitivity Level in a report
  • SECURITY: Escape and HTML encode the raw entry in Form Spam/Ham Entries

1.1.45

  • SECURITY: Added nonce check for Empty Spam/Ham Entries actions

1.1.44

  • NEW: Apply your own logic with oopspam_check_for_spam hook. Check the docs for more info: https://www.oopspam.com/help/wordpress/hooks/

1.1.43

  • NEW: Forminator support
  • NEW: MailPoet support

1.1.42

  • IMPROVEMENT: Mask API key
  • IMPROVEMENT: Show an error when a comment is spam

1.1.41

  • NEW: WPDiscuz support
  • IMPROVEMENT: Encourage sensitivity at level 3
  • IMPROVEMENT: Make the ‘API Key Exceeded’ warning message more informative

1.1.40

  • FIX: Fallback if Kadence doesn’t exist

1.1.39

  • NEW: Kadence Form Block support

1.1.38

  • FIX: Remove First and Last Name detection from Remove sensitive information from messages as it causes false negatives in some cases

1.1.37

  • FIX: Support unicode in the content field

1.1.36

  • SECURITY: Escape all input setting fields with esc_html. Thanks Rio Darmawan & Patchstack for the report

1.1.35

  • NEW: Piotnet Forms support
  • NEW: Multilingual support with WPML
  • NEW: Better support for Action Packs for Elementor Forms
  • FIX: Don’t store password type values in Elementor Forms under Form Ham/Spam Entries
  • FIX: An alternative way to find First Name in WooCommerce order if the default fails

1.1.34

  • FIX: Allow all capital First Name orders

1.1.33

  • NEW: Don’t allow invalid URL in the website field in the WP comment system
  • NEW: Integrate email check to the WP comment system
  • FIX: UK short country code in “Allowed Countries” setting

1.1.32

  • NEW: Toolset Forms support
  • NEW: [Privacy] Do not analyze Email addresses setting
  • NEW: [Privacy] Remove sensitive information from messages before sending them to OOPSpam setting.
  • NEW: Locally, stop auto-generated gibberish First & Last Name attack in WooCommerce
  • FIX: Premature exit from a loop when looking for an email field in Ninja Forms
  • SECURITY: Use sanitize_textarea_field instead of wp_filter_nohtml_kses for textarea fields in all forms.

1.1.30

  • FIX: Removed unnecessary file injection

1.1.29

  • FIX: Compatibility issues with PHP 7
  • MISC: Clean up

1.1.28

  • NEW: WS Form support
  • NEW: Auto-truncate Form Spam Entries & Form Ham Entries
  • IMPROVEMENT: Better clean up when uninstalled
  • IMPROVEMENT: Enforce default values when activated
  • FIX: In some cases, an email field value wasn’t captured in Elementor Forms

1.1.27

  • NEW: Email field spam check on all integrations
  • NEW: Form Ham Entries; report false negatives
  • NEW: Search on Form Ham Entries and Form Spam Entries tables
  • NEW: Email column on Form Ham Entries and Form Spam Entries tables
  • NEW: Bricks Forms support
  • NEW: Spam check on all types of forms such as newsletters and forms without any content field
  • IMPROVEMENT: GiveWP; removed unnecessary checks, sanitized the entire input array
  • FIX: Less annoying “The limit is hit” admin notice
  • FIX: Don’t fire spam check twice on WordPress account registration

1.1.26

  • IMPROVEMENT: Support forms with Page Break fields in Formidable Forms

1.1.25

  • IMPROVEMENT: Prevent the plugin from making multiple requests in Formidable Forms
  • IMPROVEMENT: Set default “I got my API Key from” value to OOPSpam Dashboard

1.1.24

  • FIX: WooCommerce login attempt

1.1.23

  • NEW: Ability to specify a custom content field ID
  • FIX: Filter submissions with empty content value
  • FIX: Correct the short country code for UK.
  • FIX: Enforce filtering in Ninja Forms

1.1.22

  • IMPROVEMENT: Protect registration under My account in WooCommerce integration

1.1.21

  • NEW: WooCommerce integration

1.1.20

  • NEW: WordPress user registration integration

1.1.19

  • NEW: GiveWP integration
  • NEW: “Form Spam Entries” page is visible for non-admins

1.1.18

  • NEW: Report form submissions as ham (aka not spam)

1.1.17

  • SECURITY: Sanitized inputs in ListTable implementation to avoid potential XSS attack

1.1.16

  • IMPROVEMENT: Delete OOPSpam-related table from the db when uninstalled

1.1.15

  • IMPROVEMENT: Update the plugin tags
  • IMPROVEMENT: Broken ‘Settings’ link is fixed

1.1.14

  • NEW: Store spam form entries locally
  • FIX: Prevent IP leaks

1.1.13

  • NEW: Added Formidable Forms integration

1.1.12

  • NEW: Added Fluent Forms integration
  • NEW: Added WPForms integration
  • FIX: small bug fixes

1.1.11

  • NEW: Added Elementor Forms integration
  • FIX: Some short comments bypasses the length check

1.1.10

  • FIX: Check for spam sometimes fails in Gravity Forms & comments

1.1.9

  • Bump to WP 5.8

1.1.8

  • NEW: Ask for a plugin review

1.1.7

  • NEW: A new setting “Current API Usage”
  • NEW: Support API keys from OOPSpam Dashboard
  • NEW: Contact Form 7 support

1.1.6

  • Bug fix

1.1.5

  • NEW: A new setting “Allow messages only from these countries”
  • NEW: A new setting “Allow messages only in these languages”
  • NEW: A new setting “Do not analyze IP addresses”

1.1.4

  • NEW: Added Gravity Forms support
  • NEW: A setting “Consider short messages as spam”

1.1.3

  • NEW: Added Sensitivity level, control the spam-filter’s sensitivity
  • NEW: An option to move spam comments to Trash or Spam folder

1.1.2

  • NEW: Ninja Forms Support

1.1.1

  • IMPROVEMENT: Comment Author’s url became part of analysis
  • IMPROVEMENT: HTTP request timeout increased

1.1

  • IMPROVEMENT: Some UI improvement

1.0

  • First Stable version of the plugin