To see whether all your email addresses are properly protected, use the free page scanner tool.
Other content (like phone numbers) can be protected using
[encode]+1 (555) 123-4567[/encode] [encode link="tel:+15551234567"]+1 (555) 123-4567[/encode]
- Full-page protection that catches all email addresses
- Improved phone number protection
- Built-in plugin support for ACF, Jetpack, WooCommerce and many others
Check out the Premium version of Email Address Encoder.
For detailed installation instructions, please read the standard installation procedure for WordPress plugins.
- Upload the
/email-address-encoder/directory and its contents to
- Login to your WordPress installation and activate the plugin through the Plugins menu.
- Use the “Page Scanner” under Settings -> Email Encoder to test if your email addresses are protected.
What does this plugin do?
This plugin searches for email addresses using WordPress filters like
widget_textand others. Found email addresses are encoded using decimal and hexadecimal HTML entities, which obfuscates the email addresses to protect it from being read by most email-harvesting robots.
Alternatively, you can use the
[encode]+1 (555) 123-4567[/encode]
How can I make sure the plugin works?
You can use the “Page Scanner” found under Settings -> Email Encoder to see whether all your email addresses are protected. Alternatively, you can manually look at the “page source” of your site.
Please note: Chrome’s Developer Tools, Safari’s Web Inspector and others automatically decode decimal and hexadecimal entities. You need to look at the “plain HTML source code”.
How can I filter other parts of my site?
This guide will help you encode all email addresses that aren’t caught.
Contributors & Developers
“Email Address Encoder” is open source software. The following people have contributed to this plugin.Contributors
- Fixed potential XSS vulnerability when using
- Changed page slug to avoid issues with the
- Only search for unprotected emails on public pages
- Show warning when page couldn’t be fetched
- Encode emails in navigation menus
- Defer loading of email detector script
- Use plugin version as cache buster
- Add “Polymorphous ROT47/CSS” to techniques
- Show warning when incompatible plugins are installed
- Fixed saving of dismissed notices
- Offload email detection to web worker
- Flush WP Super Cache and Cachify when saving settings
- Ignore emails in admin bar, debug bar and query monitor
- Avoid fatal error when using PHP 5.5 or lesser
- Added unprotected email detector to admin bar
eae_methodfilter in shortcode
- Fixed issue with notices not hiding in some cases
- Flush page cache when saving settings (W3 Total Cache; WP Rocket; LiteSpeed Cache; JCH Optimize)
- Blocked signup for more non-production domains
- Resolved issue with WordPress 4.7 and older
- Blocked signup for local domains and IP addresses
- Avoid fatal error when using PHP 5.3 or lesser
- Added the ability to get notified when your site contains unprotected email addresses
- Removed cross-promotion
- Added option to disable notices and promotions
- Added activation and uninstall callbacks
- Added ability to turn off email encoding
- Various code and UI improvements
- Made page scanner notice dismissable
- Only show page scanner notice on Dashboard
- Added setting for filter priority
EAE_DISABLE_NOTICESconstant to disable all notices and promotions
- Pass site URL along to page scanner
- Moved cross-promotion to plugin screen
- Added user interface
- Added links to page scanner
- Prevent potential compatibility issue with other plugins or themes
- Require PHP 5.3 to fix deprecation warning
- Prevented error when
eae_encode_emails()doesn’t receive a
EAE_FILTER_PRIORITYconstant to adjust default filter priority
- Added filter to override the encoding function
- Improved randomness of encode-function
- Improved speed by doing fast @-sign existence check
- Added filter to override the regular expression.
- Effects now also page, post and comment excerpts
- Initial release