Are you starting to get spammed through your website contact form again? You are not alone. Literally millions of people have been receiving heavy doses of spam this week. The problem is that Contact Form 7, a form used by millions of people within their WordPress installations, has stopped working with Google ReCaptcha V2. When you log in, you get an alert to change your site keys to reCaptcha V3, a version that is supposed to work in the background. The problem is, spam is still getting through.
I have searched the web and have found many complaints but no answers from WordPress. I suppose the best thing to do to save time/money at this juncture is to wait and see of they sort this out and tighten up the security.
Eventually, if this continues it would behoove webmasters to find an alternate contact form for their website. I personally will give it about a week.
To see the live version of the thread pictured above, click here: Spam Contact Form 7 reCaptcha V3 problem
We have replaced all of our client’s contact form 7 plug-ins with WPforms plug-in. This plug in easy to use and it allows reCaptcha V2.
There is one little weird thing it does. After you enter your site keys and site secret, you have to go to the form settings again and check a box that appears out of nowhere that reads: “Enable Google reCAPTCHA (v2)”. See image below:
Lead Developer at Olympus Web. I started this company in 2002. I specialize in Search Engine Optimization and building websites for small businesses.