-
Reducing Disk Load in High-Traffic PHP Applications: Switching from SQLite to Redis for Anti-Crawler Storage
Automated crawlers and scraping bots are a growing problem for modern websites. While search engine bots are useful, many other crawlers generate excessive traffic, scrape content, or overload servers. To help website owners control this type of traffic, we recently released the Anti-Crawler PHP Library by CleanTalk, an open-source tool designed to detect and limit
-
Critical Vulnerability in WP Reset – Plaintext License Key Exposure via Public Log File (CVE-2025-10645)
CleanTalk Research Team has identified a severe information disclosure vulnerability in the popular WordPress plugin WP Reset (400,000+ active installations). The issue allows unauthenticated attackers to obtain license keys and sensitive site metadata directly from a publicly accessible log file created by the plugin. This vulnerability has been assigned CVE-2025-10645 and independently confirmed by Wordfence.…
-
Critical Vulnerability CVE-2025-11705: Arbitrary File Reading in Anti-Malware Security and Brute-Force Firewall
The CleanTalk research team discovered a critical vulnerability in the popular WordPress plugin “Anti-Malware Security and Brute-Force Firewall” (GOTMLS), installed on over 100,000 websites. CVE-2025-11705 allows attackers with minimal privileges (Subscriber level) to read arbitrary files on the server, including the critical wp-config.php file, which contains database credentials and secret keys. This issue was independently…
-
Client Review: Maker Of Jacket
We’re happy to share another story from one of our valued clients — Maker Of Jacket. At CleanTalk, we always appreciate hearing how our service helps real businesses operate more smoothly. Feedback like this motivates our team to continue improving our anti-spam technologies and deliver reliable, invisible protection for websites of all sizes. Today’s highlight…
-
reCAPTCHA, hCaptcha, and CleanTalk: A Comparison for WordPress Spam Protection
Spam on WordPress isn’t just annoying — it’s relentless, especially for those searching for reCAPTCHA alternatives WordPress. You can read our full guide on how to stop WordPress spam without CAPTCHA — including real examples from site owners. Fake signups, bot comments, and form spam eat up time, clog your inbox, and scare off real…
