{"id":1789,"date":"2007-05-10T02:11:45","date_gmt":"2007-05-10T02:11:45","guid":{"rendered":"https:\/\/wordpress.org\/plugins-wp\/webpurifytextreplace\/"},"modified":"2026-02-06T20:09:56","modified_gmt":"2026-02-06T20:09:56","slug":"webpurifytextreplace","status":"closed","type":"plugin","link":"https:\/\/arg.wordpress.org\/plugins\/webpurifytextreplace\/","author":179160,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_crdt_document":"","version":"4.0.3","stable_tag":"trunk","tested":"6.4.8","requires":"2.9","requires_php":"5.6","requires_plugins":null,"header_name":"WebPurify Profanity Filter","header_author":"WebPurify","header_description":"","assets_banners_color":"","last_updated":"2026-02-06 20:09:56","external_support_url":"","external_repository_url":"","donate_link":"","header_plugin_uri":"http:\/\/www.webpurify.com\/cms-integrations\/wordpress\/","header_author_uri":"http:\/\/www.webpurify.com","rating":0,"author_block_rating":0,"active_installs":20,"downloads":9258,"num_ratings":0,"support_threads":0,"support_threads_resolved":0,"author_block_count":0,"sections":["description","installation","faq","changelog"],"tags":[],"upgrade_notice":{"4.0.3":"<p><strong>CRITICAL SECURITY UPDATE:<\/strong> This version fixes CVE-2026-0572, a vulnerability that allowed unauthorized users to modify plugin settings. Update immediately. This update adds proper capability checks and CSRF protection. No functionality changes for legitimate admin users.<\/p>","4.0.2":"<p>Contains a security vulnerability. Please update to 4.0.3 immediately.<\/p>"},"ratings":{"1":0,"2":0,"3":0,"4":0,"5":0},"assets_icons":{"icon-128x128.png":{"filename":"icon-128x128.png","revision":1468151,"resolution":"128x128","location":"assets","locale":""}},"assets_banners":[],"assets_blueprints":{},"all_blocks":[],"tagged_versions":[],"block_files":[],"assets_screenshots":[],"screenshots":[],"jetpack_post_was_ever_published":false},"plugin_section":[],"plugin_tags":[107,2236,23442,23443,23444],"plugin_category":[44,54],"plugin_contributors":[91995],"plugin_business_model":[],"class_list":["post-1789","plugin","type-plugin","status-closed","hentry","plugin_tags-comments","plugin_tags-filter","plugin_tags-filtered","plugin_tags-profanity","plugin_tags-swearing","plugin_category-discussion-and-community","plugin_category-security-and-spam-protection","plugin_contributors-webpurify","plugin_committers-webpurify"],"banners":[],"icons":{"svg":false,"icon":"https:\/\/s.w.org\/plugins\/geopattern-icon\/webpurifytextreplace.svg","icon_2x":false,"generated":true},"screenshots":[],"raw_content":"<!--section=description-->\n<p>WebPurify&trade; is an accurate and efficient <a href=\"https:\/\/www.webpurify.com\/\">profanity filter<\/a> web service. With WebPurify, the profanity list updates automatically to maximize accuracy. In addition to scanning for profanity, WebPurify allows the user to add their personal list of words to filter.<\/p>\n\n<p>Our WordPress plugin has two options:<\/p>\n\n<p>a. Replace every character of any words deemed profane by WebPurify with a \"*\" symbol and work with BuddyPress as well. (default)\nb. Prevent users from entering profanity entirely with an alert asking them to correct their text.<\/p>\n\n<p>Language Support for English, Arabic, French, German, Hindi, Italian, Japanese, Portuguese, Russian, Spanish, Thai, Turkish, Chinese, Korean, Punjabi<\/p>\n\n<p>You can purchase a license key at <a href=\"https:\/\/www.webpurify.com\/cms-integrations\/wordpress\/\">our site<\/a>.<\/p>\n\n<p>We also provide 14 day trial licenses for free.<\/p>\n\n<h3>Support<\/h3>\n\n<p>Have any problems, questions, or ideas? Please contact us at support@webpurify.com<\/p>\n\n<h3>Security<\/h3>\n\n<p>If you discover a security vulnerability within this plugin, please send an email to support@webpurify.com. All security vulnerabilities will be promptly addressed.<\/p>\n\n<!--section=installation-->\n<ol>\n<li>Unzip the file and then upload the entire \"webpurify\" folder to wp-content\/plugins directory. Make sure to add the whole folder, not the individual files.<\/li>\n<li>Activate it in the Plugin options.<\/li>\n<li>Go to the Admin -&gt; Settings -&gt; WebPurify page to enter your WebPurify API Key.<\/li>\n<\/ol>\n\n<p>You can get an API key by going to: https:\/\/www.webpurify.com\/<\/p>\n\n<p>Please note this plug-in require SimpleXML extension to work properly.<\/p>\n\n<!--section=faq-->\n<dl>\n<dt id=\"is%20this%20update%20safe%20to%20install%3F\"><h3>Is this update safe to install?<\/h3><\/dt>\n<dd><p>Yes, this is a security-focused update that maintains full backward compatibility. All existing functionality works exactly as before, but with enhanced security protection.<\/p><\/dd>\n<dt id=\"will%20this%20affect%20my%20existing%20settings%3F\"><h3>Will this affect my existing settings?<\/h3><\/dt>\n<dd><p>No, all your existing settings (API keys, filters, language preferences) will remain unchanged. Only the security of the settings page has been improved.<\/p><\/dd>\n<dt id=\"what%20was%20the%20security%20issue%3F\"><h3>What was the security issue?<\/h3><\/dt>\n<dd><p>Version 4.0.2 and earlier had a missing capability check that could allow unauthorized users to modify plugin settings. Version 4.0.3 fixes this by ensuring only WordPress administrators can access the settings.<\/p><\/dd>\n\n<\/dl>\n\n<!--section=changelog-->\n<h4>4.0.3 - 2026-02-06<\/h4>\n\n<ul>\n<li><strong>SECURITY FIX:<\/strong> Fixed CVE-2026-0572 - Unauthorized modification of data vulnerability<\/li>\n<li>Added capability check to webpurify_save_options() to ensure only administrators can modify settings<\/li>\n<li>Added nonce verification for CSRF protection<\/li>\n<li>Improved error handling with user-friendly error messages<\/li>\n<li>Enhanced security with proper authentication and authorization checks<\/li>\n<li>All users should update immediately to this version<\/li>\n<\/ul>\n\n<h4>4.0.2<\/h4>\n\n<ul>\n<li>Previous release (contains security vulnerability - please update to 4.0.3)<\/li>\n<\/ul>\n\n<h4>4.0.1<\/h4>\n\n<ul>\n<li>Previous release<\/li>\n<\/ul>\n\n<h4>4.0.0<\/h4>\n\n<ul>\n<li>Previous release<\/li>\n<\/ul>","raw_excerpt":"Uses the powerful WebPurify&trade; Profanity Filter API to stop profanity in comments.","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/arg.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/1789","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/arg.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/arg.wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/arg.wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=1789"}],"author":[{"embeddable":true,"href":"https:\/\/arg.wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/webpurify"}],"wp:attachment":[{"href":"https:\/\/arg.wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=1789"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/arg.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=1789"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/arg.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=1789"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/arg.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=1789"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/arg.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=1789"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/arg.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=1789"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}