Follow for free plugins, new theme releases and theme news
Plugin Description
Protect your WordPress content where traditional scanners fail.
Content Guard Pro is the database-first security scanner designed to detect malicious content, spam links, and SEO injections that hide inside your posts, pages, and blocks.
While file scanners protect your code, Content Guard Pro protects your content. Attackers increasingly target the database—injecting spam into Gutenberg blocks, hiding SEO links in post meta, and burying obfuscated scripts in custom fields. Content Guard Pro finds and neutralizes these threats.
Why Content Guard Pro?
Many site owners discover that spam and malware bypass file scanners by injecting directly into:
* Post content (especially nested Gutenberg blocks)
* Custom field metadata (hidden SEO spam)
* Widget content (malicious scripts)
* Options table entries (persistent injections)
Content Guard Pro is built to find these database-resident threats that other tools miss.
External Services
This plugin connects to the Content Guard Pro API service (api.contentguardpro.com) for free tier activation tracking.
What the service is used for:
* Free tier activation registration (for tracking plugin installations and statistics)
What data is sent and when:
* On plugin activation (free tier): Site URL, site name, WordPress version, PHP version, plugin version, and admin email address are sent once to register the installation. This registration is asynchronous (5-second delay) and non-blocking—plugin activation succeeds even if the API call fails.
Data transmission:
* All data is sent over HTTPS (encrypted connection)
* Registration occurs automatically on plugin activation
* License validation occurs when a license key is entered in settings
* No content or post data is ever transmitted to the API
Service provider:
* Content Guard Pro API service provided by Content Guard Pro Team
* Terms of Service: https://contentguardpro.com/terms
* Privacy Policy: https://contentguardpro.com/privacy
Privacy Policy
Content Guard Pro is designed with privacy in mind:
Data Collection:
– The plugin does NOT collect or transmit any data by default
– All scanning happens locally on your WordPress server
– No external API calls unless you explicitly enable optional integrations
Data Storage:
– Findings and scan history stored in your WordPress database
– Audit logs retained for 365 days (configurable)
Technical Specifications
Database Tables:
– {prefix}content_guard_pro__findings – Security findings with confidence scores
– {prefix}content_guard_pro__scans – Scan history and performance metrics
– {prefix}content_guard_pro__audit_log – Activity tracking for forensics and rollback
Hooks & Filters:
– content_guard_pro_loaded – Fires when plugin is fully initialized
– content_guard_pro_finding_saved – Fires when a new finding is saved
– content_guard_pro_detection_patterns – Filter or extend detection rules
– content_guard_pro_allowlist_domains – Filter allowlist domains
REST API:
– GET /wp-json/content-guard-pro/v1/findings – Query findings with filters and pagination
WP-CLI Commands:
– Coming in future release
Action Scheduler:
– Uses Action Scheduler for reliable background job processing
– Resumable scans survive server timeouts
– Configurable batch size and delay
Credits
Development Team:
– Content Guard Pro Team
Built With:
– WordPress Core APIs
– Action Scheduler
Special Thanks:
– WordPress community for feedback and testing
– Security researchers who contributed detection patterns
– Beta testers who helped refine the plugin
Support
Need help? We’re here for you:
- Documentation: https://contentguardpro.com/docs
- Support Forum: https://wordpress.org/support/plugin/content-guard-pro/
- Bug Reports: Use the support forum or GitHub issues
- Feature Requests: We’d love to hear your ideas!
Roadmap
Upcoming Features:
– Additional page builder support (Divi, Beaver Builder)
– Advanced Custom Fields (ACF) deep scanning
– WooCommerce product content scanning
– Comments and user meta scanning
– Custom table scanning
– WP-CLI interface
– PDF report generation
– Advanced pattern editor with YAML/JSON
– Network-wide multisite administration
– Community pattern sharing
– Automated pattern updates
Want to influence our roadmap? Let us know what features matter most to you!
Screenshots
Dashboard – Security Overview – Real-time view of your site’s security health, active threats, and recent scan activity.
Scan Center – Run comprehensive manual scans or configure real-time protection settings for your content.
Scan History – Complete audit trail of all scan operations with detailed status, duration, and findings summary.
Finding Details – Deep dive into detected threats with confidence scoring, threat location, and specific remediation steps.
Security Reports – Visual analytics of your security posture, showing threat trends, severity distribution, and scan metrics.
Patterns & Allowlist – Manage detection rules and configure allowlists to prevent false positives for trusted domains.
Pattern Tester – Verify your custom detection rules against sample content to verify accuracy before deployment.
Settings & Configuration – Customize scanner performance, notification channels, and system preferences to match your hosting environment.
System Diagnostics – Monitor plugin health, memory usage, and background worker status for optimal performance.
Help Center – Access comprehensive documentation, support forums, and troubleshooting guides directly from your dashboard.
Smart Admin Alerts – Get unobtrusive notifications for critical findings so you can take immediate action.
Gutenberg Integration – Real-time content scanning directly within the Block Editor.
Classic Editor Support – Full security scanning support for the Classic Editor with a dedicated meta box for findings.
Contextual Threat Analysis – Understand why content was flagged with detailed explanations of the detected threat vectors.
