Customer Reviews for WooCommerce
Happy customers are your best marketers. So why not ask them to leave a review? Send an automated, personalized email reminder to each customer after a transaction – make reviewing easier than ever before! Enhance the standard WooCommerce reviews with extra features, and reassure customers by having their questions answered with a Q&A section on product pages. The Customer Reviews for WooCommerce plugin helps you increase engagement, build loyalty, improve SEO, and get more sales with social proof. Localized to 30 languages and installed on over 80,000 stores! The plugin includes an optional integration with an external service to verify customer reviews. CusRev collects reviews from customers and verifies their authenticity. You can find information about CusRev‘s terms and privacy policy on our website. 🔥 Main Features Automated or manual review reminder emails Manual review reminders by WhatsApp with the ‘click to chat’ integration Aggregated and on-site review forms to allow quick and easy reviewing Enhanced reviews, including ratings, images, voting and filtering options Offer discounts in exchange for reviews Integration with Google Shopping Question and Answer feature, allowing customers to ask and answer FAQs Import and export reviews ✉️ Review Reminders – Make Reviewing Easy Customer Reviews for WooCommerce makes reviewing simple. You can easily set it to send out review collection emails, days or weeks after purchase. The review form makes it as simple as possible for the customer to leave a review. It’s an easy process: Your customer places an order. You fulfill the order and mark it as completed. After a delay (customizable by you), your customer receives an automated review request email. The customer leaves a review for all of their purchases on an aggregated form. Reviews can include ratings, images, and videos to increase trust. The review is posted in the standard WooCommerce review format and published on your site. You can even choose to automatically send the customer a discount code for future purchases as a thank you. Plus, benefit from: A one-page review form where customers can review multiple items in one go Manual email invitations for selected orders Manual WhatsApp review invitations via the ‘click to chat’ integration Personalized emails for each customer with built-in variables Emails restricted for particular categories of products or customers with specific user roles Quick and easy functionality thanks to a responsive email template and custom colors An Unsubscribe option A built-in testing tool to ensure emails look beautiful before sending Reminders in different languages via “qTranslate X”, “Polylang”, “TranslatePress” and “WPML” plugin integration Support for custom WooCommerce order statuses Tracking when customers open emails with review invitations and when customers view aggregated review forms 💸 Boost Sales – With Extra Features Did you know that displaying reviews can increase conversion by 270%? Reviews show that people can trust your site. Other people have bought from you before, and it went so well that they want to share their experience. That social proof is important. Customers need to know your product images and descriptions can be trusted. They need to know their bank account is safe. Turn your visitors into customers by displaying reviews! Plus, benefit from: Photo reviews (let customers upload pictures with reviews) Video reviews (let customers upload videos with reviews) Additional rating criteria on review forms to rate different features of products Questions about customer attributes on review forms Preventing spam by enabling reCAPTCHA for reviews Displaying a terms and privacy checkbox that people need to tick before posting reviews Showing reviews summary bar on product pages Filtering reviews by rating Enabling visitors to vote on reviews left by your customers Lazy loading of reviews and attached pictures Sorting reviews by date or votes Review tagging Trust Badges that show a summary of verified customer reviews Built-in shortcodes to display a responsive list, grid, or slider of reviews on any page or post Creating avatars from initials of customer names, using standard WordPress avatars or hiding avatars completely 🔎 Boost SEO – The Automated Way Google loves something new! Add new content to your site automatically with customer reviews. Show off review ratings directly in Google searches, and boost your site’s clickthrough rate. Plus, benefit from: Getting unique, user-generated SEO content for your shop – customer reviews often contain long tail keywords Building user-generated content (UGC) such as photos and videos uploaded by your customers Embedding JSON-LD structured data for product reviews to help search engines better understand and display your review content Enhancing rich snippets and structured data markup for reviews with pictures Enhancing the standard WooCommerce structured data markup with product identifiers (GTIN, MPN, Brand) 😀 Boost Engagement – With Better Feedback Customers believe that only 8% of companies deliver a great experience – but that can change! Use reviews to get direct feedback from your customers. Find out the good and bad parts of their experience. You can make business decisions based on the feedback you receive and keep your customers happy. Plus, benefit from: Receiving feedback for multiple products at once with aggregated review forms Personalized email templates Enabling customers to vote on past reviews 🚀 Boost Loyalty – Grow Your Repeat Business Market to your existing customers! It’s simple: our review reminders keep you in the forefront of their minds, and offering coupon codes for future purchases gets them back to your store. It’s easy for a customer to leave a review and receive their coupon, which creates a double whammy effect: the customer comes back for more, and you gain valuable feedback. Maybe they’ll even gift the voucher to a friend! Plus, benefit from: Automatically generating new coupons for ongoing customer reviews Fair rules for coupon creation – customers will be awarded with a coupon regardless of how positive or negative their review is Automatic emails with coupons upon review submission Personalizing emails with coupons for each customer using built-in variables Fine-tuning coupon properties according to your sales strategy Working out-of-the-box with a responsive email template with custom colors A built-in testing tool to ensure emails look beautiful before sending Emailing coupons in different languages via “qTranslate X”, “Polylang”, “TranslatePress” and “WPML” plugin integration Displaying a badge next on reviews awarded with coupons to build trust between customers and your business 🤔 Reassure Customers – With Questions & Answers There’s nothing more reassuring to customers than having their questions answered – with Customer Reviews for WooCommerce you can do just that by: Adding a tab with Questions & Answers or FAQs to product pages on your website Letting your prospective customers ask questions about products and view questions others have asked Increasing sales by answering questions and making sure prospective customers have all the information available to make a purchase decision Reducing return and refund requests by providing answers to common questions about products, as well as offering extra information to avoid any potential misunderstanding of product features or benefits Improving SEO with content created by your customers – that in turn helps search engines better understand and index your website Sending email notifications to customers about replies to their questions and making them come back to your website Displaying a terms and privacy checkbox that people need to tick before asking questions or posting answers 🛒 Google Shopping Integration Generate an XML feed with products for Google Shopping Generate an XML feed with product reviews for Google Shopping Show star ratings in Google Shopping search results ⬇ Import and Export Want to add reviews or questions and answers from external websites? No problemo. Just use the import reviews feature, which automatically creates reviews in WooCommerce based on a CSV file. Or use the import Q&A feature to upload product questions and answers from a CSV file. Similarly, you can export WooCommerce reviews or questions and answers to a CSV file. Import / export product and store reviews Import / export reviews with images and videos Import / export questions and answers (Q&A) Quick and Easy Set-Up Make sure that WooCommerce is installed. Then, just follow the Getting Started Tutorial on our official support portal or watch the video tutorial. Get Even More Features – With the Pro Version CusRev has two plans: Free and Pro. The Pro plan offers additional features and email support – to find out more and purchase a license, please visit CusRev’s website.
Top keywords
- reviews41×3.00%
- customers27×1.98%
- review27×1.98%
- customer20×1.47%
- questions15×1.10%
- product10×0.73%
- woocommerce10×0.73%
- emails9×0.66%
- answers8×0.59%
- customer reviews8×0.59%
- email8×0.59%
- google7×0.51%
Kitgenix CAPTCHA for Cloudflare Turnstile
Spam is expensive: it wastes time, clogs inboxes, creates fake accounts, and on stores it can lead to abandoned checkout noise and fraudulent activity. Traditional CAPTCHA solutions can also hurt conversions by adding friction. Cloudflare Turnstile is a modern, privacy-first CAPTCHA alternative designed to reduce friction for real people while still blocking bots. Kitgenix CAPTCHA for Cloudflare Turnstile is a production-ready Turnstile integration for WordPress that focuses on reliability in real-world setups: – Server-side token verification (using Cloudflare’s official endpoint) – Fast, conditional loading (only where needed) – Support for dynamic/AJAX forms and modern WooCommerce Blocks / Store API checkout – Security features: replay protection, proxy-aware IP handling, whitelisting, and developer mode (warn-only) You can enable/disable each integration (and many per-form toggles), choose auto-injection vs shortcode-only placement, customise display and messaging, and use built-in diagnostics and Site Health checks to troubleshoot. The plugin also includes a real setup-verification gate for sensitive flows, a Portability tab for JSON export/import, a Support tab with active protection alerts, per-integration analytics, CSV exports, privacy-safe metrics, and recent verification events, and support for defining keys through wp-config.php constants or environment variables. Supported integrations (where Turnstile can be added) All integrations are enable-able from settings. Many also support Mode: Auto vs Shortcode. WordPress Core – Login – Custom login screens rendered with wp_login_form() – Registration – Lost password – Reset password – Comments (standard WordPress comment forms, including safe handling for comment failures/redirects) WooCommerce (Classic) – Checkout – Product reviews – My Account login – My Account registration – Lost password WooCommerce Blocks (Store API / Block Checkout) – UI rendering inside block-based checkout – Adds token to Store API requests (header and/or extensions payload when available) – Server-side validation of Store API checkout requests – Supports “shortcode-only mode” behaviour so you can control placement Easy Digital Downloads (EDD) – Checkout – Login – Register – Profile editor Form plugins – Contact Form 7 (CF7) – WPForms – Fluent Forms – Formidable Forms – Forminator – Gravity Forms – JetFormBuilder – Jetpack Forms – Kadence Forms – Elementor Forms (including popups and AJAX submissions) Membership / community / newsletters – Ultimate Member (login, registration, password reset) – MemberPress (signup / checkout) – Paid Memberships Pro (checkout / registration) – MailPoet forms – wpDiscuz comment forms Community / forums – bbPress (topic/reply flows where applicable) – BuddyPress (flows where applicable) Core features (site-wide) Turnstile widget rendering – Uses Cloudflare’s official Turnstile API script – Widget options: – Theme: auto / light / dark – Size: normal / compact / flexible – Appearance: stored as Turnstile “appearance” option (defaults to always) – Language: auto or explicit locale (passed via hl=...) Settings & admin experience – Settings page under the shared Kitgenix WP admin menu – Live “test widget” preview on the settings screen (renders when a Site Key is present) – Setup verification gate helps confirm the widget works before auth-sensitive integrations are relied on – Site Key + Secret Key storage (secret not printed in HTML by default) – “Reveal secret key” (admins only, nonce-protected AJAX action) Messaging & UX – Custom error message (admin-configurable, used across integrations) – Extra message text (optional text displayed alongside/under the widget) – “Disable submit until completed” option (frontend behaviour via plugin JS) Replay protection (enabled by default) – Detects re-used tokens (hash stored in transients) and blocks replays – TTL is filterable – Stores hashed token markers under the transient prefix kitgenix_captcha_for_cloudflare_turnstile_ts_ – Sets a short-lived cookie (kitgenix_captcha_for_cloudflare_turnstile_ts_replay, ~120s) when replay is detected (for frontend behaviour/messages) – Dedicated replay message (filterable) Developer mode (warn-only) – Verification failures do not block submissions – Failures are logged (and emitted via a developer log action) – Optional inline warning annotation for admins (frontend config) Whitelisting (skip Turnstile + skip loading API script) – Whitelist logged-in users – Whitelist by IP (exact, wildcards, CIDR — including IPv6) – Whitelist by User-Agent (substring or wildcard matching) – Filter hook to override whitelist decision Proxy / real-IP handling – Optional trust of proxy headers (Cloudflare / X-Forwarded-For style) – Trusted proxy IP list / trust controls – Forwarded headers are only honoured when the request originates from a trusted proxy Performance & resilience – Conditional script loading only where needed – Async/strategy-based script loading (depending on WP version) – Adds resource hints (preconnect / dns-prefetch) for Turnstile domain – Detects duplicate Turnstile API loaders (if another plugin/theme enqueues api.js): – Stores detection in the transient kitgenix_turnstile_duplicate_scripts – Shows admin notice on settings and Plugins screen – Includes dismiss link (nonce-protected, uses kitgenix_captcha_for_cloudflare_turnstile_ts_dismiss_dupe=1) Site Health + diagnostics – Adds a Site Health test: “Cloudflare Turnstile readiness” – Checks: – Keys present – Duplicate API loader transient (kitgenix_turnstile_duplicate_scripts) – Last verification success/failure snapshot – Heuristic warning if common optimisation/caching plugins are active – Stores the last verify outcome (success, time, error codes) for Site Health display – Tracks privacy-safe counters in kitgenix_captcha_for_cloudflare_turnstile_metrics (checks total/passed/failed/retries plus per-integration breakdowns) – Raises automatic admin and Site Health alerts when recent verification failures spike or Cloudflare siteverify requests start failing at the HTTP layer – Shows per-integration analytics in the Support tab so admins can compare passes, failures, retries, and friction by protected flow – Shows active protection alerts in the Support tab for verification spikes, blocked API requests, and duplicate loader conflicts – Exports per-integration analytics and the recent diagnostic log as CSV from the Support tab – Shows a recent diagnostic log in the Support tab so admins can review the last verification events without storing raw IPs or URLs Portability and rollout Export settings to JSON and import them into another site from the Portability tab. Choose whether exported settings include your Turnstile keys. Import settings in a controlled way for repeatable deployments. Define KITGENIX_CAPTCHA_FOR_CLOUDFLARE_TURNSTILE_SITE_KEY and KITGENIX_CAPTCHA_FOR_CLOUDFLARE_TURNSTILE_SECRET_KEY in wp-config.php or your environment when you want keys managed outside the database. Manual placement (shortcode) If you have a custom form or an unsupported plugin, you can manually render the widget: [kitgenix_turnstile] Shortcode output includes: – a nonce field – a hidden cf-turnstile-response input – the widget container (with data-sitekey) – support for passing arbitrary attributes via shortcode attributes Many supported integrations also offer Shortcode-only mode (you place the shortcode where you want; the plugin validates server-side without auto-injection). Quick Start Install and activate the plugin. Open the Turnstile settings under the Kitgenix hub in wp-admin. Add your Cloudflare Turnstile Site Key and Secret Key. Configure widget options (theme/size/appearance/language) and messaging if needed. Enable the integrations (and per-form toggles) you want. Save, then test the key user journeys: login, registration, checkout, and your main contact form. Tip: Start with Developer mode (warn-only) on staging or during rollout. Once you’re satisfied, disable warn-only to enforce blocking. Performance and caching notes (important for stores) Turnstile is lightweight, but aggressive optimisation can break rendering or token freshness. If you use caching/optimisation plugins: – Allowlist https://challenges.cloudflare.com – Avoid full-page caching on login/account/checkout pages – Avoid combining/inlining the Turnstile loader – Avoid heavily delaying Elementor/form plugin scripts – Ensure outbound HTTP requests to Cloudflare are not blocked (needed for server-side verification) Settings Overview Main settings: – Site Key – Secret Key (with “secret present” state, clear/reveal) – Theme (auto/light/dark) – Size (normal/compact/flexible) – Appearance (Turnstile appearance option) – Language (auto or specific locale) – Disable submit until completed – Custom error message – Extra message text Security & advanced: – Replay protection (on/off) – Developer mode (warn-only) – Whitelist logged-in users – Whitelist IPs (wildcards/CIDR, including IPv6) – Whitelist user agents – Proxy trust (enable/disable) – Trusted proxy IPs / trust controls – Setup verification before sensitive rollouts Portability & operations: – Export settings to JSON – Import settings from JSON – Optionally include or exclude site keys during transfer – Support KITGENIX_CAPTCHA_FOR_CLOUDFLARE_TURNSTILE_SITE_KEY and KITGENIX_CAPTCHA_FOR_CLOUDFLARE_TURNSTILE_SECRET_KEY as constants or environment-variable overrides for keys Integrations (enable + per-form toggles where available): – WordPress Core (login/register/lost password/reset password/standard comments) – WooCommerce (checkout/product reviews/login/register/lost password) – WooCommerce Blocks mode (auto vs shortcode-only) – Easy Digital Downloads (checkout/login/register/profile) – Contact Form 7 – WPForms – Fluent Forms – Formidable Forms – Forminator – Gravity Forms – Jetpack Forms – Kadence Forms – Elementor Forms – bbPress – BuddyPress Developers Shortcode: [kitgenix_turnstile] Server-side verification endpoint: https://challenges.cloudflare.com/turnstile/v0/siteverify Filters (script/loading): – kitgenix_captcha_for_cloudflare_turnstile_script_url( $url, $settings ) – kitgenix_turnstile_freshness_ms – kitgenix_turnstile_inline_style Filters (verification / request handling): – kitgenix_turnstile_siteverify_url – kitgenix_turnstile_siteverify_timeout – kitgenix_turnstile_siteverify_sslverify – kitgenix_turnstile_siteverify_http_args – kitgenix_turnstile_send_remoteip – kitgenix_turnstile_remote_ip – kitgenix_turnstile_token_from_request – kitgenix_turnstile_handle_comment_form – kitgenix_turnstile_error_codes – kitgenix_turnstile_error_message – kitgenix_turnstile_replay_message – kitgenix_captcha_for_cloudflare_turnstile_{context}_turnstile_error_message Filters (replay protection): – kitgenix_turnstile_replay_ttl Filters (operational alerts): – kitgenix_turnstile_alert_window_seconds – kitgenix_turnstile_alert_failure_spike_min_failures – kitgenix_turnstile_alert_failure_spike_failure_rate – kitgenix_turnstile_alert_http_error_min_failures Filters (whitelist / proxy trust): – kitgenix_turnstile_is_whitelisted( $is_whitelisted, $details ) – kitgenix_turnstile_trust_headers – kitgenix_turnstile_trusted_proxies Internal identifiers (options / transients / cookies / meta): – Option: kitgenix_captcha_for_cloudflare_turnstile_settings – Settings group (Settings API): kitgenix_captcha_for_cloudflare_turnstile_settings_group – Option: kitgenix_captcha_for_cloudflare_turnstile_metrics – Option: kitgenix_turnstile_recent_event_log – Option: kitgenix_turnstile_last_verify – Transient: kitgenix_captcha_for_cloudflare_turnstile_do_activation_redirect – Transient: kitgenix_turnstile_duplicate_scripts – Transient prefix (replay protection): kitgenix_captcha_for_cloudflare_turnstile_ts_ – Cookie (replay notice): kitgenix_captcha_for_cloudflare_turnstile_ts_replay – WooCommerce order meta (Blocks/Store API verification): _kitgenix_turnstile_verified Internal nonces / actions: – Shortcode/form nonce field name: kitgenix_captcha_for_cloudflare_turnstile_nonce – Shortcode/form nonce action: kitgenix_captcha_for_cloudflare_turnstile_action – Settings save nonce field name: kitgenix_captcha_for_cloudflare_turnstile_settings_nonce – Settings save nonce action: kitgenix_captcha_for_cloudflare_turnstile_settings_save – Admin AJAX action (reveal saved secret): kitgenix_turnstile_get_secret (WordPress hook: wp_ajax_kitgenix_turnstile_get_secret) – Admin AJAX nonce action (reveal saved secret): kitgenix_turnstile_reveal_secret – Admin-post action (analytics exports): kitgenix_turnstile_export_analytics – Admin-post nonce action (analytics exports): kitgenix_turnstile_export_analytics – Duplicate-loader notice dismiss query arg: kitgenix_captcha_for_cloudflare_turnstile_ts_dismiss_dupe – Duplicate-loader notice dismiss nonce action: kitgenix_captcha_for_cloudflare_turnstile_ts_dismiss Actions (developer logging): – kitgenix_turnstile_dev_log External Services This plugin uses Cloudflare Turnstile to verify requests and prevent spam and abuse. The plugin may: – Load the Turnstile script: https://challenges.cloudflare.com/turnstile/v0/api.js – Submit verification requests server-side to: https://challenges.cloudflare.com/turnstile/v0/siteverify When verification is enabled, the plugin sends to Cloudflare: – Your Turnstile secret key – The Turnstile response token – The visitor IP address (as the optional remoteip parameter, when enabled) The plugin does not send the visitor’s browser user agent to Cloudflare as part of the verification payload (the HTTP request itself is made server-side by WordPress). If proxy trust is enabled, the plugin may read forwarding headers (e.g. CF-Connecting-IP, X-Forwarded-For) to determine the client IP, but only when requests originate from configured trusted proxies. The plugin does not add tracking cookies itself and does not sell or share personal data. Cloudflare Turnstile Terms: https://developers.cloudflare.com/turnstile/ Cloudflare Privacy Policy: https://www.cloudflare.com/privacypolicy/ This plugin also includes a shared “Kitgenix hub” component in wp-admin which may fetch publicly available plugin metadata from WordPress.org using the WordPress core plugins_api() function (WordPress.org Plugins API). When it runs: only in wp-admin (Kitgenix plugin admin pages) Data sent: plugin slug(s) (no personal data) Data received: publicly available plugin information (e.g. active installs, ratings) Caching: responses are cached locally using transients for ~1 day: kitgenix_hub_wporg_active_installs_v1 kitgenix_hub_wporg_ratings_v1 Trademark Notice “Cloudflare” and the Cloudflare logo are trademarks of Cloudflare, Inc. This plugin is not affiliated with or endorsed by Cloudflare, Inc. Support Development If this plugin helps keep spam away without slowing your site down, you can support ongoing development here: https://buymeacoffee.com/kitgenix Credits Built with ❤︎ by @kitgenix – https://kitgenix.com