{"id":319528,"date":"2026-06-18T18:24:52","date_gmt":"2026-06-18T18:24:52","guid":{"rendered":"https:\/\/wordpress.org\/plugins\/vms-span-checker\/"},"modified":"2026-06-18T18:24:30","modified_gmt":"2026-06-18T18:24:30","slug":"vms-elements-form-guard","status":"publish","type":"plugin","link":"https:\/\/wordpress.org\/plugins\/vms-elements-form-guard\/","author":23507361,"comment_status":"closed","ping_status":"closed","template":"","meta":{"version":"1.0.0","stable_tag":"1.0.0","tested":"7.0","requires":"6.0","requires_php":"7.4","requires_plugins":null,"header_name":"VMS Elements Form Guard","header_author":"VMS Elements","header_description":"Validates email domains on front-end forms using disposable domain lists, HTTPS checks, and optional third-party safe-browsing APIs.","assets_banners_color":"6d6dc5","last_updated":"2026-06-18 18:24:30","external_support_url":"","external_repository_url":"","donate_link":"https:\/\/vmselements.com\/product\/vms-elements-form-guard-pro","header_plugin_uri":"https:\/\/wordpress.org\/plugins\/vms-elements-form-guard","header_author_uri":"https:\/\/vmselements.com","rating":0,"author_block_rating":0,"active_installs":0,"downloads":27,"num_ratings":0,"support_threads":0,"support_threads_resolved":0,"author_block_count":0,"sections":["description","installation","faq","changelog"],"tags":{"1.0.0":{"tag":"1.0.0","author":"vmsuniverse","date":"2026-06-18 18:24:30"}},"upgrade_notice":{"1.0.0":"<p>Initial release of VMS Elements Form Guard. Install to protect your forms from spam and malicious submissions.<\/p>"},"ratings":[],"assets_icons":{"icon-128x128.png":{"filename":"icon-128x128.png","revision":3577681,"resolution":"128x128","location":"assets","locale":"","width":128,"height":128},"icon-256x256.png":{"filename":"icon-256x256.png","revision":3577681,"resolution":"256x256","location":"assets","locale":"","width":256,"height":256},"icon.svg":{"filename":"icon.svg","revision":3577681,"resolution":false,"location":"assets","locale":false}},"assets_banners":{"banner-1544x500.png":{"filename":"banner-1544x500.png","revision":3577681,"resolution":"1544x500","location":"assets","locale":"","width":1544,"height":500},"banner-772x250.png":{"filename":"banner-772x250.png","revision":3577681,"resolution":"772x250","location":"assets","locale":"","width":772,"height":250}},"assets_blueprints":{},"all_blocks":[],"tagged_versions":["1.0.0"],"block_files":[],"assets_screenshots":{"screenshot-1.png":{"filename":"screenshot-1.png","revision":3577681,"resolution":"1","location":"assets","locale":"","width":1280,"height":720},"screenshot-10.png":{"filename":"screenshot-10.png","revision":3577681,"resolution":"10","location":"assets","locale":"","width":1280,"height":720},"screenshot-2.png":{"filename":"screenshot-2.png","revision":3577681,"resolution":"2","location":"assets","locale":"","width":1280,"height":720},"screenshot-3.png":{"filename":"screenshot-3.png","revision":3577681,"resolution":"3","location":"assets","locale":"","width":1280,"height":720},"screenshot-4.png":{"filename":"screenshot-4.png","revision":3577681,"resolution":"4","location":"assets","locale":"","width":1280,"height":720},"screenshot-5.png":{"filename":"screenshot-5.png","revision":3577681,"resolution":"5","location":"assets","locale":"","width":1280,"height":720},"screenshot-6.png":{"filename":"screenshot-6.png","revision":3577681,"resolution":"6","location":"assets","locale":"","width":1280,"height":720},"screenshot-7.png":{"filename":"screenshot-7.png","revision":3577681,"resolution":"7","location":"assets","locale":"","width":1280,"height":720},"screenshot-8.png":{"filename":"screenshot-8.png","revision":3577681,"resolution":"8","location":"assets","locale":"","width":1280,"height":720},"screenshot-9.png":{"filename":"screenshot-9.png","revision":3577681,"resolution":"9","location":"assets","locale":"","width":1280,"height":720}},"screenshots":{"1":"<strong>Dashboard<\/strong> - Overview of spam protection statistics and quick links","2":"<strong>Form Guard<\/strong> - Configure form mappings with flexible targeting options","3":"<strong>Form Guard Settings<\/strong> - Detailed validation options for each form","4":"<strong>Whitelist Domains<\/strong> - Manage trusted domains that always pass validation","5":"<strong>Disposable Domains<\/strong> - View and add blocked disposable email domains","6":"<strong>API Settings<\/strong> - Configure Google Web Risk, VirusTotal, and reCAPTCHA","7":"<strong>AI Settings<\/strong> - Configure AI providers for spam detection and summaries","8":"<strong>Comment Guard<\/strong> - Advanced comment spam rules and patterns","9":"<strong>Activity Log<\/strong> - Detailed logging of all validation events","10":"<strong>Frontend Validation<\/strong> - Real-time validation feedback on forms"}},"plugin_section":[],"plugin_tags":[2656,139067,267,599,724],"plugin_category":[41,54],"plugin_contributors":[267774],"plugin_business_model":[],"class_list":["post-319528","plugin","type-plugin","status-publish","hentry","plugin_tags-anti-spam","plugin_tags-disposable","plugin_tags-email","plugin_tags-spam","plugin_tags-validation","plugin_category-communication","plugin_category-security-and-spam-protection","plugin_contributors-vmsuniverse","plugin_committers-vmsuniverse"],"banners":{"banner":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/banner-772x250.png?rev=3577681","banner_2x":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/banner-1544x500.png?rev=3577681","banner_rtl":false,"banner_2x_rtl":false},"icons":{"svg":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/icon.svg?rev=3577681","icon":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/icon.svg?rev=3577681","icon_2x":false,"generated":false},"screenshots":[{"src":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/screenshot-1.png?rev=3577681","caption":"<strong>Dashboard<\/strong> - Overview of spam protection statistics and quick links"},{"src":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/screenshot-2.png?rev=3577681","caption":"<strong>Form Guard<\/strong> - Configure form mappings with flexible targeting options"},{"src":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/screenshot-3.png?rev=3577681","caption":"<strong>Form Guard Settings<\/strong> - Detailed validation options for each form"},{"src":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/screenshot-4.png?rev=3577681","caption":"<strong>Whitelist Domains<\/strong> - Manage trusted domains that always pass validation"},{"src":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/screenshot-5.png?rev=3577681","caption":"<strong>Disposable Domains<\/strong> - View and add blocked disposable email domains"},{"src":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/screenshot-6.png?rev=3577681","caption":"<strong>API Settings<\/strong> - Configure Google Web Risk, VirusTotal, and reCAPTCHA"},{"src":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/screenshot-7.png?rev=3577681","caption":"<strong>AI Settings<\/strong> - Configure AI providers for spam detection and summaries"},{"src":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/screenshot-8.png?rev=3577681","caption":"<strong>Comment Guard<\/strong> - Advanced comment spam rules and patterns"},{"src":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/screenshot-9.png?rev=3577681","caption":"<strong>Activity Log<\/strong> - Detailed logging of all validation events"},{"src":"https:\/\/ps.w.org\/vms-elements-form-guard\/assets\/screenshot-10.png?rev=3577681","caption":"<strong>Frontend Validation<\/strong> - Real-time validation feedback on forms"}],"raw_content":"<!--section=description-->\n<p><strong>VMS Elements Form Guard<\/strong> is a comprehensive spam protection plugin that validates email domains, blocks disposable emails, and protects your forms from malicious submissions using multiple security layers.<\/p>\n\n<p><strong><a href=\"https:\/\/vmselements.com\/product\/vms-elements-form-guard-pro\">VMS Elements Form Guard Pro<\/a><\/strong> adds Form Guard, Contact Guard, Subscribe Guard, AI summaries, email templates, and more.<\/p>\n\n<h4>Key Features<\/h4>\n\n<p><strong>Core Protection<\/strong><\/p>\n\n<ul>\n<li><strong>Disposable Email Detection<\/strong> - Block 10,000+ temporary\/disposable email domains automatically<\/li>\n<li><strong>Email Domain Validation<\/strong> - Verify email domains have valid MX records and HTTPS<\/li>\n<li><strong>Real-time Validation<\/strong> - Instant feedback before form submission<\/li>\n<li><strong>Custom Whitelist<\/strong> - Always allow trusted domains<\/li>\n<li><strong>Custom Blocklist<\/strong> - Add your own blocked domains<\/li>\n<\/ul>\n\n<p><strong>Security API Integrations<\/strong><\/p>\n\n<ul>\n<li><strong>Google Web Risk API<\/strong> - Enterprise-grade malware and phishing detection<\/li>\n<li><strong>VirusTotal Integration<\/strong> - Multi-engine domain scanning with support for multiple API keys<\/li>\n<li><strong>Google reCAPTCHA<\/strong> - Both v2 and v3 support for bot protection<\/li>\n<\/ul>\n\n<p><strong>AI-Powered Features<\/strong><\/p>\n\n<ul>\n<li><strong>AI Spam Detection<\/strong> - Intelligent comment analysis using leading AI providers<\/li>\n<li><strong>AI Post Summaries<\/strong> - Auto-generate summaries for blog posts<\/li>\n<li><strong>AI Product Summaries<\/strong> - Auto-generate WooCommerce product summaries<\/li>\n<li><strong>Multiple AI Providers<\/strong> - OpenAI (GPT-4), Anthropic (Claude), Google Gemini, DeepSeek<\/li>\n<\/ul>\n\n<p><strong>Form Protection Guards<\/strong><\/p>\n\n<ul>\n<li><strong>Contact Guard<\/strong> - Protect contact forms from spam<\/li>\n<li><strong>Subscribe Guard<\/strong> - Protect newsletter subscription forms<\/li>\n<li><strong>Registration Guard<\/strong> - Protect WordPress user registration<\/li>\n<li><strong>Login Guard<\/strong> - Protect login forms with validation<\/li>\n<li><strong>Comment Guard<\/strong> - Advanced comment spam protection with custom rules<\/li>\n<li><strong>Product Review Guard<\/strong> - Protect WooCommerce product reviews<\/li>\n<\/ul>\n\n<p><strong>Additional Features<\/strong><\/p>\n\n<ul>\n<li><strong>Activity Dashboard<\/strong> - Monitor all validation events with analytics<\/li>\n<li><strong>Detailed Logging<\/strong> - Track every blocked attempt with reasons<\/li>\n<li><strong>Blocked Users Management<\/strong> - View and manage blocked users<\/li>\n<li><strong>Custom Error Messages<\/strong> - Customize all validation messages<\/li>\n<li><strong>Email Templates<\/strong> - Customizable notification emails<\/li>\n<li><strong>Translation Ready<\/strong> - Full internationalization support<\/li>\n<\/ul>\n\n<h4>Supported Forms<\/h4>\n\n<p>VMS Elements Form Guard works with any HTML form including:<\/p>\n\n<ul>\n<li>Contact Form 7<\/li>\n<li>WPForms<\/li>\n<li>Gravity Forms<\/li>\n<li>Ninja Forms<\/li>\n<li>Formidable Forms<\/li>\n<li>Newsletter Plugin<\/li>\n<li>Mailchimp Forms<\/li>\n<li>WooCommerce Forms<\/li>\n<li>WordPress Registration<\/li>\n<li>WordPress Comments<\/li>\n<li>Any Custom HTML Form<\/li>\n<\/ul>\n\n<h4>How It Works<\/h4>\n\n<ol>\n<li><strong>Install and Activate<\/strong> - Simple one-click installation<\/li>\n<li><strong>Add Form Mapping<\/strong> - Tell the plugin which forms to protect<\/li>\n<li><strong>Configure Validation<\/strong> - Choose your protection level<\/li>\n<li><strong>Automatic Protection<\/strong> - Forms are protected in real-time<\/li>\n<\/ol>\n\n<h4>API Keys (Optional)<\/h4>\n\n<p>Basic protection works without any API keys. For enhanced security:<\/p>\n\n<ul>\n<li><strong>Google Web Risk<\/strong> - Detect malware and phishing domains<\/li>\n<li><strong>VirusTotal<\/strong> - Multi-engine scanning (free tier: 500 requests\/day)<\/li>\n<li><strong>AI Providers<\/strong> - Enable intelligent spam detection<\/li>\n<\/ul>\n\n<h4>Privacy &amp; GDPR<\/h4>\n\n<ul>\n<li>Only email domains are processed for validation, not full email addresses (unless you enable features that require them).<\/li>\n<li>Data is sent to third-party services only when you enter API keys and enable those features.<\/li>\n<li>No personal data is stored on VMS Elements servers by default.<\/li>\n<li>Full GDPR compliance depends on your configuration and privacy policy.<\/li>\n<\/ul>\n\n<h3>Privacy Policy<\/h3>\n\n<p>VMS Elements Form Guard does not collect, store, or send any data from your website on its own. Every outbound network call is opt-in and only happens after you explicitly configure the corresponding API key or feature in the plugin settings.<\/p>\n\n<h4>Third-party services used by this plugin<\/h4>\n\n<p>The plugin can connect to the following third-party services. Each one is only contacted when you actively enable the matching feature and provide the required API key:<\/p>\n\n<ul>\n<li><strong>Google Web Risk<\/strong> \u2014 Sends the email domain or URL hostname being validated to <code>https:\/\/webrisk.googleapis.com\/v1\/uris:search<\/code>. Requires your own Google API key. <a href=\"https:\/\/cloud.google.com\/terms\">Terms of Service<\/a> \u00b7 <a href=\"https:\/\/policies.google.com\/privacy\">Privacy Policy<\/a>.<\/li>\n<li><strong>VirusTotal<\/strong> \u2014 Sends the email domain or URL hostname being validated to <code>https:\/\/www.virustotal.com\/api\/v3\/domains\/<\/code>. Requires your own VirusTotal API key. <a href=\"https:\/\/docs.virustotal.com\/docs\/historic-terms-of-service\">Terms of Service<\/a> \u00b7 <a href=\"https:\/\/docs.virustotal.com\/docs\/historic-privacy-policy\">Privacy Policy<\/a>.<\/li>\n<li><strong>Google reCAPTCHA<\/strong> \u2014 Loaded only when you enable reCAPTCHA on a form. The visitor's browser exchanges a verification token with <code>https:\/\/www.google.com\/recaptcha\/<\/code>. <a href=\"https:\/\/policies.google.com\/terms\">Terms<\/a> \u00b7 <a href=\"https:\/\/policies.google.com\/privacy\">Privacy Policy<\/a>.<\/li>\n<li><strong>OpenAI<\/strong> \u2014 Sends the message body being moderated to <code>https:\/\/api.openai.com\/v1\/chat\/completions<\/code>. Requires your own OpenAI API key. <a href=\"https:\/\/openai.com\/policies\/terms-of-use\">Terms<\/a> \u00b7 <a href=\"https:\/\/openai.com\/policies\/privacy-policy\">Privacy Policy<\/a>.<\/li>\n<li><strong>Anthropic<\/strong> \u2014 Sends the message body being moderated to <code>https:\/\/api.anthropic.com\/v1\/messages<\/code>. Requires your own Anthropic API key. <a href=\"https:\/\/www.anthropic.com\/legal\/consumer-terms\">Terms<\/a> \u00b7 <a href=\"https:\/\/www.anthropic.com\/legal\/privacy\">Privacy Policy<\/a>.<\/li>\n<li><strong>Google Gemini<\/strong> \u2014 Sends the message body being moderated to <code>https:\/\/generativelanguage.googleapis.com\/<\/code>. Requires your own Gemini API key. <a href=\"https:\/\/ai.google.dev\/gemini-api\/terms\">Terms<\/a> \u00b7 <a href=\"https:\/\/policies.google.com\/privacy\">Privacy Policy<\/a>.<\/li>\n<li><strong>DeepSeek<\/strong> \u2014 Sends the message body being moderated to <code>https:\/\/api.deepseek.com\/chat\/completions<\/code>. Requires your own DeepSeek API key. <a href=\"https:\/\/chat.deepseek.com\/downloads\/DeepSeek%20Terms%20of%20Use.html\">Terms<\/a> \u00b7 <a href=\"https:\/\/chat.deepseek.com\/downloads\/DeepSeek%20Privacy%20Policy.html\">Privacy Policy<\/a>.<\/li>\n<li><strong>Amazon Bedrock<\/strong> \u2014 Sends the message body being moderated to the AWS Bedrock Runtime endpoint <code>https:\/\/bedrock-runtime.{region}.amazonaws.com\/model\/{model}\/invoke<\/code> (the region and model are the ones you configure). Requires your own AWS access key, secret key, and model ID. <a href=\"https:\/\/aws.amazon.com\/service-terms\/\">Terms<\/a> \u00b7 <a href=\"https:\/\/aws.amazon.com\/privacy\/\">Privacy Policy<\/a>.<\/li>\n<\/ul>\n\n<h4>What data is sent<\/h4>\n\n<p>For each enabled service the plugin sends ONLY:<\/p>\n\n<ul>\n<li>The <strong>domain part<\/strong> of the submitted email or the URL hostname, for reputation checks (Web Risk, VirusTotal).<\/li>\n<li>The <strong>message text<\/strong> the visitor typed in a guarded textarea, for AI spam moderation (OpenAI, Anthropic, Gemini, DeepSeek, Amazon Bedrock). The chosen AI provider receives the body of the field plus a fixed system prompt.<\/li>\n<li>The <strong>reCAPTCHA token<\/strong> generated by the visitor's browser, for bot-protection verification (Google reCAPTCHA).<\/li>\n<\/ul>\n\n<p>The plugin does NOT send the full submitted form, IP addresses, user accounts, or any other personal data to these third parties.<\/p>\n\n<h4>Data stored locally<\/h4>\n\n<p>The plugin writes only to the WordPress site database. The following tables and options may be created:<\/p>\n\n<ul>\n<li><code>*_vms_elements_form_guard_whitelist_domains<\/code>, <code>*_vms_elements_form_guard_disposable_domains<\/code> \u2014 Email-domain reputation lists you manage.<\/li>\n<li><code>*_vms_elements_form_guard_logs<\/code> \u2014 Validation events (domain, decision, timestamp). No personal data.<\/li>\n<li><code>*_vms_elements_form_guard_api_keys<\/code> \u2014 Encrypted copies of the API keys you entered.<\/li>\n<li><code>*_vms_elements_form_guard_comment_enforcement<\/code> \u2014 IP\/user-ID strike counters for the optional Block User feature.<\/li>\n<li><code>vefg-google-config<\/code>, <code>vefg-virustotal-config<\/code>, <code>vefg-ai-span-config<\/code>, <code>vefg-recaptcha-config<\/code>, <code>vefg-error-messages<\/code>, <code>vefg-registration-guard<\/code> \u2014 Plugin settings.<\/li>\n<\/ul>\n\n<p>All tables and options are removed when you uninstall the plugin.<\/p>\n\n<h4>Cookies<\/h4>\n\n<p>The plugin itself does not set any cookies. Google reCAPTCHA sets its own cookies when you enable it.<\/p>\n\n<h4>GDPR<\/h4>\n\n<p>Because every outbound request requires an administrator to first enable the matching feature and provide an API key, your site only becomes a \"data processor\" toward these third parties after you opt in. We recommend listing each enabled service in your site's own privacy policy.<\/p>\n\n<h3>External services<\/h3>\n\n<p>This plugin relies on the following third-party \/ external services. Each service is contacted ONLY after a site administrator enables the matching feature and provides the required API key or credentials. Nothing is sent by default.<\/p>\n\n<ol>\n<li><p><strong>Google Web Risk<\/strong> \u2014 Used to detect malware and phishing domains. The email domain or URL hostname being validated is sent to <code>https:\/\/webrisk.googleapis.com\/v1\/uris:search<\/code> each time a guarded field is validated and this feature is enabled. Provided by Google. <a href=\"https:\/\/cloud.google.com\/terms\">Terms of Service<\/a> \u2014 <a href=\"https:\/\/policies.google.com\/privacy\">Privacy Policy<\/a>.<\/p><\/li>\n<li><p><strong>VirusTotal<\/strong> \u2014 Used for multi-engine domain reputation scanning. The email domain or URL hostname being validated is sent to <code>https:\/\/www.virustotal.com\/api\/v3\/domains\/<\/code> each time a guarded field is validated and this feature is enabled. Provided by VirusTotal (Google). <a href=\"https:\/\/docs.virustotal.com\/docs\/historic-terms-of-service\">Terms of Service<\/a> \u2014 <a href=\"https:\/\/docs.virustotal.com\/docs\/historic-privacy-policy\">Privacy Policy<\/a>.<\/p><\/li>\n<li><p><strong>Google reCAPTCHA<\/strong> \u2014 Used for bot protection on guarded forms. When enabled, the visitor's browser exchanges a verification token with <code>https:\/\/www.google.com\/recaptcha\/<\/code>. Provided by Google. <a href=\"https:\/\/policies.google.com\/terms\">Terms of Service<\/a> \u2014 <a href=\"https:\/\/policies.google.com\/privacy\">Privacy Policy<\/a>.<\/p><\/li>\n<li><p><strong>OpenAI<\/strong> \u2014 Used for AI spam moderation. The message text typed in a guarded field is sent to <code>https:\/\/api.openai.com\/v1\/chat\/completions<\/code> when AI moderation is enabled with this provider. Provided by OpenAI. <a href=\"https:\/\/openai.com\/policies\/terms-of-use\">Terms of Use<\/a> \u2014 <a href=\"https:\/\/openai.com\/policies\/privacy-policy\">Privacy Policy<\/a>.<\/p><\/li>\n<li><p><strong>Anthropic<\/strong> \u2014 Used for AI spam moderation. The message text typed in a guarded field is sent to <code>https:\/\/api.anthropic.com\/v1\/messages<\/code> when AI moderation is enabled with this provider. Provided by Anthropic. <a href=\"https:\/\/www.anthropic.com\/legal\/consumer-terms\">Terms<\/a> \u2014 <a href=\"https:\/\/www.anthropic.com\/legal\/privacy\">Privacy Policy<\/a>.<\/p><\/li>\n<li><p><strong>Google Gemini<\/strong> \u2014 Used for AI spam moderation. The message text typed in a guarded field is sent to <code>https:\/\/generativelanguage.googleapis.com\/<\/code> when AI moderation is enabled with this provider. Provided by Google. <a href=\"https:\/\/ai.google.dev\/gemini-api\/terms\">Terms<\/a> \u2014 <a href=\"https:\/\/policies.google.com\/privacy\">Privacy Policy<\/a>.<\/p><\/li>\n<li><p><strong>DeepSeek<\/strong> \u2014 Used for AI spam moderation. The message text typed in a guarded field is sent to <code>https:\/\/api.deepseek.com\/chat\/completions<\/code> when AI moderation is enabled with this provider. Provided by DeepSeek. <a href=\"https:\/\/chat.deepseek.com\/downloads\/DeepSeek%20Terms%20of%20Use.html\">Terms<\/a> \u2014 <a href=\"https:\/\/chat.deepseek.com\/downloads\/DeepSeek%20Privacy%20Policy.html\">Privacy Policy<\/a>.<\/p><\/li>\n<li><p><strong>Amazon Bedrock<\/strong> \u2014 Used for AI spam moderation. The message text typed in a guarded field is sent to the AWS Bedrock Runtime endpoint <code>https:\/\/bedrock-runtime.{region}.amazonaws.com\/model\/{model}\/invoke<\/code> (region and model are the ones you configure) when AI moderation is enabled with this provider. Provided by Amazon Web Services. <a href=\"https:\/\/aws.amazon.com\/service-terms\/\">Service Terms<\/a> \u2014 <a href=\"https:\/\/aws.amazon.com\/privacy\/\">Privacy Policy<\/a>.<\/p><\/li>\n<\/ol>\n\n<!--section=installation-->\n<h4>Automatic Installation<\/h4>\n\n<ol>\n<li>Go to <strong>Plugins &gt; Add New<\/strong> in your WordPress admin<\/li>\n<li>Search for \"VMS Elements Form Guard\"<\/li>\n<li>Click <strong>Install Now<\/strong> and then <strong>Activate<\/strong><\/li>\n<\/ol>\n\n<h4>Manual Installation<\/h4>\n\n<ol>\n<li>Download the plugin ZIP file<\/li>\n<li>Go to <strong>Plugins &gt; Add New &gt; Upload Plugin<\/strong><\/li>\n<li>Choose the ZIP file and click <strong>Install Now<\/strong><\/li>\n<li>Activate the plugin<\/li>\n<\/ol>\n\n<h4>After Activation<\/h4>\n\n<ol>\n<li>Navigate to <strong>VMS Elements Form Guard<\/strong> in your admin menu<\/li>\n<li>Go to <strong>Form Guard<\/strong> and add your first form mapping<\/li>\n<li>Configure validation options as needed<\/li>\n<li>(Optional) Add API keys for enhanced protection<\/li>\n<\/ol>\n\n<!--section=faq-->\n<dl>\n<dt id=\"does%20this%20work%20without%20api%20keys%3F\"><h3>Does this work without API keys?<\/h3><\/dt>\n<dd><p>Yes! Basic disposable email detection and domain validation work without any API keys. Google Web Risk, VirusTotal, and AI features are optional enhancements.<\/p><\/dd>\n<dt id=\"will%20it%20slow%20down%20my%20forms%3F\"><h3>Will it slow down my forms?<\/h3><\/dt>\n<dd><p>No. Validation is performed via AJAX before form submission. Most checks complete in under 500ms. API responses are cached to minimize latency.<\/p><\/dd>\n<dt id=\"is%20it%20compatible%20with%20my%20form%20plugin%3F\"><h3>Is it compatible with my form plugin?<\/h3><\/dt>\n<dd><p>VMS Elements Form Guard works with any HTML form. It's tested with Contact Form 7, WPForms, Gravity Forms, Ninja Forms, Newsletter Plugin, and many more.<\/p><\/dd>\n<dt id=\"is%20it%20gdpr%20compliant%3F\"><h3>Is it GDPR compliant?<\/h3><\/dt>\n<dd><p>The plugin only processes email domains for core validation, not full email addresses. Optional features may process more data depending on your settings. No personal information is stored on VMS servers by default. You are responsible for your site's privacy policy when using third-party APIs.<\/p><\/dd>\n<dt id=\"what%20data%20is%20sent%20to%20external%20services%3F\"><h3>What data is sent to external services?<\/h3><\/dt>\n<dd><p>When configured, the plugin may send domain names (and related validation metadata) to Google Web Risk, VirusTotal, Google reCAPTCHA, and AI providers (OpenAI, Anthropic, Google Gemini, DeepSeek). See the <strong>Privacy Policy<\/strong> section for the full per-service breakdown.<\/p><\/dd>\n<dt id=\"how%20do%20i%20protect%20a%20custom%20form%3F\"><h3>How do I protect a custom form?<\/h3><\/dt>\n<dd><ol>\n<li>Go to Form Guard<\/li>\n<li>Click \"Add form guard mapping\"<\/li>\n<li>Set Form Type to \"Custom\"<\/li>\n<li>Enter your form's CSS selector (e.g., <code>#my-form<\/code> or <code>.contact-form<\/code>)<\/li>\n<li>Configure validation options and save<\/li>\n<\/ol><\/dd>\n<dt id=\"can%20i%20whitelist%20specific%20domains%3F\"><h3>Can I whitelist specific domains?<\/h3><\/dt>\n<dd><p>Yes. Go to <strong>VMS Elements Form Guard &gt; Whitelist Domains<\/strong> and add trusted domains. Whitelisted domains bypass all validation checks.<\/p><\/dd>\n<dt id=\"why%20is%20a%20legitimate%20email%20being%20blocked%3F\"><h3>Why is a legitimate email being blocked?<\/h3><\/dt>\n<dd><p>Check these in order:\n1. Is the domain on the disposable list? Add it to the whitelist\n2. Is VirusTotal flagging it? Adjust the detection thresholds\n3. Is the HTTPS check failing? Disable the HTTPS requirement for that form<\/p><\/dd>\n<dt id=\"can%20i%20use%20multiple%20ai%20providers%3F\"><h3>Can I use multiple AI providers?<\/h3><\/dt>\n<dd><p>You can save API keys for multiple providers, but only one is active at a time. You can switch between providers anytime without losing your keys.<\/p><\/dd>\n<dt id=\"how%20many%20disposable%20domains%20are%20blocked%3F\"><h3>How many disposable domains are blocked?<\/h3><\/dt>\n<dd><p>The plugin includes over 10,000 known disposable email domains, and you can add custom domains to the blocklist.<\/p><\/dd>\n<dt id=\"does%20it%20work%20with%20woocommerce%3F\"><h3>Does it work with WooCommerce?<\/h3><\/dt>\n<dd><p>Yes! VMS Elements Form Guard includes a dedicated Product Review Guard for WooCommerce and can protect checkout\/registration forms.<\/p><\/dd>\n<dt id=\"what%20are%20the%20minimum%20requirements%3F\"><h3>What are the minimum requirements?<\/h3><\/dt>\n<dd><ul>\n<li>WordPress 6.0 or higher<\/li>\n<li>PHP 7.4 or higher<\/li>\n<li>MySQL 5.6 or higher<\/li>\n<\/ul><\/dd>\n<dt id=\"what%20are%20the%20api%20rate%20limits%3F\"><h3>What are the API rate limits?<\/h3><\/dt>\n<dd><ul>\n<li><strong>Google Web Risk<\/strong>: 100,000 requests\/month (free with billing enabled)<\/li>\n<li><strong>VirusTotal<\/strong>: 500 requests\/day per API key (add multiple keys for higher limits)<\/li>\n<li><strong>OpenAI\/Anthropic\/Gemini\/DeepSeek<\/strong>: Pay-per-use, approximately $0.01 per AI check<\/li>\n<\/ul><\/dd>\n<dt id=\"where%20can%20i%20get%20support%3F\"><h3>Where can I get support?<\/h3><\/dt>\n<dd><ul>\n<li>Documentation: https:\/\/vmselements.com<\/li>\n<li>Support forum: https:\/\/wordpress.org\/support\/plugin\/vms-elements-form-guard\/<\/li>\n<li>Email: support@vmselements.com<\/li>\n<\/ul><\/dd>\n\n<\/dl>\n\n<!--section=changelog-->\n<h4>1.0.0<\/h4>\n\n<ul>\n<li>Initial release<\/li>\n<li>Email domain validation with MX record checking<\/li>\n<li>Disposable email detection (10,000+ domains)<\/li>\n<li>Custom whitelist and blocklist management<\/li>\n<li>Google Web Risk API integration<\/li>\n<li>VirusTotal API integration with multiple key support<\/li>\n<li>Google reCAPTCHA v2 and v3 support<\/li>\n<li>AI spam detection with OpenAI, Anthropic, Gemini, and DeepSeek<\/li>\n<li>AI-powered post and product summaries<\/li>\n<li>Form Guard with flexible page\/post targeting<\/li>\n<li>Registration Guard for WordPress registration<\/li>\n<li>Login Guard for login form protection<\/li>\n<li>Contact Guard for contact form protection<\/li>\n<li>Subscribe Guard for newsletter forms<\/li>\n<li>Comment Guard with custom spam rules<\/li>\n<li>Product Review Guard for WooCommerce<\/li>\n<li>Activity dashboard with analytics<\/li>\n<li>Detailed validation logging<\/li>\n<li>Blocked users management<\/li>\n<li>Custom error messages<\/li>\n<li>Email templates<\/li>\n<li>Full translation\/i18n support<\/li>\n<\/ul>","raw_excerpt":"Protect your WordPress forms from spam, fake emails, and malicious domains with advanced validation and AI-powered detection.","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/319528","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=319528"}],"author":[{"embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/vmsuniverse"}],"wp:attachment":[{"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=319528"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=319528"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=319528"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=319528"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=319528"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=319528"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}