OOPSpam Anti-Spam


OOPSpam WordPress plugin is a next-generation spam filter for WordPress that uses advanced methods to analyze every comment and contact form submission. Our algorithms, including machine learning models, cross-check each submission against our database to detect and prevent spam.

It uses the OOPSpam API, which protects over 1M websites daily.


  • Customize the “sensitivity level” of spam filtering so you don’t miss important messages
  • Checks messages using a machine learning model
  • Country restrictions
  • Language restrictions
  • Automatically checks against multiple IP & email blacklists
  • Automatically detects spam word patterns
  • Manual moderation to block email, IP and by exact keywords
  • [Privacy] Do not analyze IP addresses setting
  • [Privacy] Do not analyze Emails setting.
  • [Privacy] Remove sensitive information from messages setting
  • Form Spam Entries: view spam entries, delete, send submission to website admin or report them to us.
  • Form Ham Entries: view not spam entries, delete or report them to us.
  • and many custom rules, advanced analysis to detect and mark as spam

The value we bring:

  • Fast, Lightweight & Accessible
  • No cookies, no challenges, no javascript, no tracking
  • High accuracy (%99.9)
  • Use one API key with unlimited websites
  • No data stored on our servers. All your data is stored in your local WordPress database.
  • Privacy by design
  • Well tested so it will NOT break your website with every update
  • Transparent and responsible company. We have an active vulnerability disclosure program.
  • Support (24 hour response)

The plugin filters both comments, site search, and contact form submissions.

Supported form & comment solutions:

  • WooCommerce Order & Registration
  • Elementor Forms
  • Ninja Forms
  • Gravity Forms
  • Kadence Form Block
  • Fluent Forms
  • Breakdance Forms
  • WS Form
  • WPDiscuz
  • Forminator
  • WPForms
  • Formidable Forms
  • Contact Form 7
  • Bricks Forms
  • Toolset Forms
  • Piotnet Forms
  • GiveWP Donation Forms
  • MailPoet
  • Beaver Builder Contact Form
  • Ultimate Member

OOPSpam Anti-Spam WordPress plugin requires minimal configuration. The only thing you need to do is to get a key and paste it into the appropriate setting field under Settings=>OOPSpam Anti-Spam. If you have a contact form plugin, make sure you enable spam protection on the settings page.

Please note: This is a premium plugin. You need an OOPSpam Anti-Spam API key to use the plugin. Each account comes with 40 free spam checks per month.
If you already use OOPSpam on other platforms, you can use the same API key for this plugin.


  • OOPSpam admin settings
  • Spam Entries from contact forms


You can install OOPSpam Anti-Spam plugin both from your WordPress admin dashboard and manually.


  1. Visit the plugins page within your dashboard and select ‘Add New’;
  2. Search for ‘oopspam’;
  3. Activate OOPSpam Anti-Spam from your Plugins page;
  4. Go to OOPSpam Anti-Spam=>Settings


  1. Upload the ‘oopspam-anti-spam’ folder to the /wp-content/plugins/ directory;
  2. Activate the OOPSpam Anti-Spam plugin through the ‘Plugins’ menu in WordPress;
  3. Go to OOPSpam Anti-Spam=>Settings


Using the plugin requires you to have an OOPSpam API key. You can get one from here.
Once you have a key, copy it and paste into OOPSpam API key field under OOPSpam Anti-Spam=>Settings


Where do I report security bugs found in this plugin?

Please report security bugs found in the source code of this plugin through the Patchstack Vulnerability Disclosure Program. The Patchstack team will assist you with verification, CVE assignment, and notify the developers of this plugin.


Januarie 28, 2024
I had an Issuesy with the plugin and the support team was so amazing, the response time was immediate and the issue was solved instantly. It works easy with Elementor Forms. I highly recommend OOPSpam Plugin.
Januarie 12, 2024
This plugin works really well. Better yet, any time I have any sort of issue, the response time from the oops team is immediate and they always fix the problem or answer my questions. I highly recommend it.
Desember 9, 2023
Tried the trial first, worked successfully, 100% stopped spam. Upgraded to paid plan. Customer support great as well, contacted and received email back within 30 minutes on a weekend!
Desember 1, 2023
This is a great plugin for stopping spam being sent via email contact forms and all messages can be displayed to check they have been classified correctly as spam or not spam (they can also be re-classified if necessary but in my experience that doesn't happen very often). If you're looking for a way to reduce the amount of spam being sent via the contact forms on your website, I highly recommend this plugin. And the support team are very responsive as well!
November 14, 2023
Coming from Cleantalk (and a brief period of Akismet). That one did the job, but throughout a few years they had their share of problems and I really never got the peace of mind I was looking for. So enter OOPSpam. OOPSpam has turned out great so far. The setup is a quick minute or so per website and you're good to go. Consider the time you need to setup something like Cloudflare Turnstile or Google captcha, and with these solutions you don't even have a decent log file. With OOPSpam you get just the options you need, no more, no less. With Cleantalk it's a long page full of options. And honestly, I'm just looking for something that just works. OOPSpam has a great log right in the admin area of your website. In case of any false positive or negative, you can report it directly from the log. Last but not least, OOPSpam seems to have compatibility with nearly every form software available on the market, whether it's native Elementor/Breakdance or a tool like WPForms – it seems to support them all.
Oktober 13, 2023
Been using Askimet, but they only filter comments. So, downloaded this plugin to test since I'm going crazy manually dealing with spam registrations. And this plugin worked beautifully!
Read all 17 reviews

Contributors & Developers

“OOPSpam Anti-Spam” is oopbron sagteware. Die volgende mense het bygedra tot die ontwikkeling van hierdie uitbreiding:


Translate “OOPSpam Anti-Spam” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.



  • NEW: Manual moderation setting to manually block email, IP and exact keyword.
  • NEW: Email admin setting under Form Spam Entries to send message and email data to the website admin.
  • FIX: Load plugin Javascript and CSS files only in the plugin settings


  • IMPROVEMENT: WS Form integration uses new pre-submission hook. No need to add an action anymore.
  • NEW: WS Form Spam Message error field
  • NEW: Ultimate Member support


  • FIX: Error when reporting false positives/negatives


  • NEW: Log submissions to OOPSpam setting. Allows you to view logs in the OOPSpam Dashboard


  • FIX: WooCommerce spam filtering applied even when spam protection was off


  • NEW: The main content field ID setting now supports multiple ids (separated by commas)
  • NEW: Beaver Builder contact form support


  • IMPROVEMENT: A better way to prevent empty messages from passing through


  • NEW: Trackback and Pingback protection
  • NEW: WP comment logs are available under the Form Spam/Ham Entries tables.


  • FIX: WP_Query warning in the search protection


  • MISC: Compatibility tested with WP 6.4


  • IMPROVEMENT: Bricks Form integration doesn’t require to add custom action.


  • NEW: Breakdance Forms support
  • FIX: Failed nonce verification in cron jobs that empty spam/ham entries


  • NEW: Quickly add spam countries in Block countries setting
  • FIX: Make WP site search protection optional
  • FIX: Avoid multiple API calls when searching


  • NEW: Block countries


  • NEW: WP site search protection
  • IMPROVEMENT: Tested with WP 6.3


  • IMPROVEMENT: Include the current Sensitivity Level in a report
  • SECURITY: Escape and HTML encode the raw entry in Form Spam/Ham Entries


  • SECURITY: Added nonce check for Empty Spam/Ham Entries actions


  • NEW: Apply your own logic with oopspam_check_for_spam hook. Check the docs for more info: https://www.oopspam.com/help/wordpress/hooks/


  • NEW: Forminator support
  • NEW: MailPoet support


  • IMPROVEMENT: Show an error when a comment is spam


  • NEW: WPDiscuz support
  • IMPROVEMENT: Encourage sensitivity at level 3
  • IMPROVEMENT: Make the ‘API Key Exceeded’ warning message more informative


  • FIX: Fallback if Kadence doesn’t exist


  • NEW: Kadence Form Block support


  • FIX: Remove First and Last Name detection from Remove sensitive information from messages as it causes false negatives in some cases


  • FIX: Support unicode in the content field


  • SECURITY: Escape all input setting fields with esc_html. Thanks Rio Darmawan & Patchstack for the report


  • NEW: Piotnet Forms support
  • NEW: Multilingual support with WPML
  • NEW: Better support for Action Packs for Elementor Forms
  • FIX: Don’t store password type values in Elementor Forms under Form Ham/Spam Entries
  • FIX: An alternative way to find First Name in WooCommerce order if the default fails


  • FIX: Allow all capital First Name orders


  • NEW: Don’t allow invalid URL in the website field in the WP comment system
  • NEW: Integrate email check to the WP comment system
  • FIX: UK short country code in “Allowed Countries” setting


  • NEW: Toolset Forms support
  • NEW: [Privacy] Do not analyze Email addresses setting
  • NEW: [Privacy] Remove sensitive information from messages before sending them to OOPSpam setting.
  • NEW: Locally, stop auto-generated gibberish First & Last Name attack in WooCommerce
  • FIX: Premature exit from a loop when looking for an email field in Ninja Forms
  • SECURITY: Use sanitize_textarea_field instead of wp_filter_nohtml_kses for textarea fields in all forms.


  • FIX: Removed unnecessary file injection


  • FIX: Compatibility issues with PHP 7
  • MISC: Clean up


  • NEW: WS Form support
  • NEW: Auto-truncate Form Spam Entries & Form Ham Entries
  • IMPROVEMENT: Better clean up when uninstalled
  • IMPROVEMENT: Enforce default values when activated
  • FIX: In some cases, an email field value wasn’t captured in Elementor Forms


  • NEW: Email field spam check on all integrations
  • NEW: Form Ham Entries; report false negatives
  • NEW: Search on Form Ham Entries and Form Spam Entries tables
  • NEW: Email column on Form Ham Entries and Form Spam Entries tables
  • NEW: Bricks Forms support
  • NEW: Spam check on all types of forms such as newsletters and forms without any content field
  • IMPROVEMENT: GiveWP; removed unnecessary checks, sanitized the entire input array
  • FIX: Less annoying “The limit is hit” admin notice
  • FIX: Don’t fire spam check twice on WordPress account registration


  • IMPROVEMENT: Support forms with Page Break fields in Formidable Forms


  • IMPROVEMENT: Prevent the plugin from making multiple requests in Formidable Forms
  • IMPROVEMENT: Set default “I got my API Key from” value to OOPSpam Dashboard


  • FIX: WooCommerce login attempt


  • NEW: Ability to specify a custom content field ID
  • FIX: Filter submissions with empty content value
  • FIX: Correct the short country code for UK.
  • FIX: Enforce filtering in Ninja Forms


  • IMPROVEMENT: Protect registration under My account in WooCommerce integration


  • NEW: WooCommerce integration


  • NEW: WordPress user registration integration


  • NEW: GiveWP integration
  • NEW: “Form Spam Entries” page is visible for non-admins


  • NEW: Report form submissions as ham (aka not spam)


  • SECURITY: Sanitized inputs in ListTable implementation to avoid potential XSS attack


  • IMPROVEMENT: Delete OOPSpam-related table from the db when uninstalled


  • IMPROVEMENT: Update the plugin tags
  • IMPROVEMENT: Broken ‘Settings’ link is fixed


  • NEW: Store spam form entries locally
  • FIX: Prevent IP leaks


  • NEW: Added Formidable Forms integration


  • NEW: Added Fluent Forms integration
  • NEW: Added WPForms integration
  • FIX: small bug fixes


  • NEW: Added Elementor Forms integration
  • FIX: Some short comments bypasses the length check


  • FIX: Check for spam sometimes fails in Gravity Forms & comments


  • Bump to WP 5.8


  • NEW: Ask for a plugin review


  • NEW: A new setting “Current API Usage”
  • NEW: Support API keys from OOPSpam Dashboard
  • NEW: Contact Form 7 support


  • Bug fix


  • NEW: A new setting “Allow messages only from these countries”
  • NEW: A new setting “Allow messages only in these languages”
  • NEW: A new setting “Do not analyze IP addresses”


  • NEW: Added Gravity Forms support
  • NEW: A setting “Consider short messages as spam”


  • NEW: Added Sensitivity level, control the spam-filter’s sensitivity
  • NEW: An option to move spam comments to Trash or Spam folder


  • NEW: Ninja Forms Support


  • IMPROVEMENT: Comment Author’s url became part of analysis
  • IMPROVEMENT: HTTP request timeout increased


  • IMPROVEMENT: Some UI improvement


  • First Stable version of the plugin