Submit Changelog
Track Changelogs

MentoGuard: Behavioral Spam Blocker for Contact Forms

Changelog

1.8.0

  • Fix: Plugin Check warnings — all database queries fully compliant
  • Fix: Tested up to header mismatch between plugin file and readme.txt
  • Fix: Emoji replaced with Dashicons throughout admin UI
  • Fix: Score color in spam log — blocked entries now show orange/red, never green
  • Fix: uninstall.php uses esc_sql() for DROP TABLE instead of %1s placeholder
  • Fix: uninstall.php now cleans up debug log options
  • Add: README.md for GitHub
  • Change: Plugin name updated to MentoGuard: Behavioral Spam Blocker for Contact Forms
  • Change: Plugin URI updated to https://mentotex.dev/mentoguard
  • Change: Description updated to reflect support for all WordPress forms

1.7.2

  • Fix: universal_validate() was consuming CF7 token before cf7_validate() could use it
  • Fix: Added REQUEST_URI check to skip CF7 REST API requests in universal_validate()
  • Fix: Added _wpcf7 POST field check as final safety net

1.7.1

  • Add: Debug Mode with step-by-step validation logging
  • Add: Debug Log admin page
  • Add: Debug Mode toggle in Settings
  • Fix: mg_score field missing detection improved

1.7.0

  • Fix: CF7 uses REST API not Ajax — switched to wpcf7_spam filter
  • Add: Token refresh after successful CF7 submission (no page reload needed)
  • Fix: All Plugin Check warnings in logger resolved
  • Fix: uninstall.php variables renamed with mentoguard_ prefix

1.6.0

  • Add: IP Blacklist with CIDR range support
  • Add: Top Spammers page with one-click blacklisting
  • Add: Daily cron job for log retention purge
  • Add: Bot test script updated for token system

1.5.0

  • Fix: CF7 Ajax submissions now correctly validated
  • Fix: All database queries use $wpdb->prepare()
  • Fix: All $_GET/$_POST/$_SERVER reads include wp_unslash()
  • Fix: Log filter form includes nonce verification
  • Add: index.php silence files in all directories
  • Add: languages/ folder with .pot file

1.4.0

  • Add: Page time protection with configurable threshold
  • Add: Seconds or milliseconds unit selection
  • Add: Hard block or score-based action options

1.3.0

  • Add: Signed one-time token system
  • Add: JS bypass detection

1.2.0

  • Remove: Captcha removed (to be reintroduced in future version)
  • Fix: Server-side blocking now correctly reads threshold settings
  • Fix: Score badge color logic
  • Add: Bulk delete in Spam Logs

1.0.0

  • Initial release

Plugin Website
Visit website

Author
H. Bakhtiari
Version:
1.8.5
Last Updated
May 29, 2026
Requires
WordPress 6.0
Tested Up To
WordPress 7.0
Requires PHP
8.0

Share Post

Join our newsletter.

Get insights into what’s happening at ChangelogWP right in your inbox. We don’t believe in spam.