[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ftb1fJFWWlnoT4epsz-aZ1eaDa_mnUXIBEmqFaDC3lWw":3,"$ffrT9MqwpsIt8NU9NdzihPCYUyH11Nl58k3YyrCAVUlM":951,"$fo32j9vzIB1THzFYsXnLYsNtLM7YYks6sIFcEmjeZC_E":955},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":5,"active_installs":10,"downloaded":11,"rating":12,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":79,"crawl_stats":38,"alternatives":87,"analysis":195,"fingerprints":933},"cf7-redirect-thank-you-page","Business Essentials for Contact Form 7","1.2.1","Scott Paterson","https:\u002F\u002Fprofiles.wordpress.org\u002Fscottpaterson\u002F","\u003Ch4>Overview\u003C\u002Fh4>\n\u003Cp>Transform your Contact Form 7 into a complete business solution. Business Essentials adds the professional features you need to accept payments, fight spam, capture leads, schedule appointments, and create stunning forms – all without the complexity of multiple plugins.\u003C\u002Fp>\n\u003Cp>The all-in-one toolkit designed for growing businesses. Choose from seven powerful modules and activate only what you need. No bloat, no confusion – just the features that matter to your business, working seamlessly with Contact Form 7.\u003C\u002Fp>\n\u003Cp>Whether you’re taking online payments, protecting against spam bots, storing customer submissions, or booking appointments, Business Essentials gives you enterprise-level functionality with the simplicity Contact Form 7 users love.\u003C\u002Fp>\n\u003Ch4>Available Modules\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Redirect & Thank You Page\u003C\u002Fstrong> – Redirect users to a URL or display a custom thank you message after form submission\u003C\u002Fli>\n\u003Cli>\u003Cstrong>PayPal & Stripe Payments\u003C\u002Fstrong> – Accept payments through your forms using PayPal or Stripe payment gateways\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Google reCAPTCHA v2\u003C\u002Fstrong> – Protect your forms from spam with Google reCAPTCHA verification\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Country & Phone Fields\u003C\u002Fstrong> – Add country dropdowns and international phone number fields with dial codes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Database Submissions\u003C\u002Fstrong> – Store all form submissions in your database and export to CSV\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Bookings & Appointments\u003C\u002Fstrong> – Add date and time picker fields for appointment scheduling\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Material Design\u003C\u002Fstrong> – Apply beautiful Material Design styling to your Contact Form 7 forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Each Contact Form 7 contact form has its own settings for each enabled module.\u003C\u002Fp>\n\u003Ch4>Thank You Page Feature\u003C\u002Fh4>\n\u003Cp>When a contact form is set to use the Thank You Page and the user submits the form, it will send the Contact Form 7 email as usual, then redirect the user to the Thank You Page. This Thank You Page is not an actual “page” on your site, meaning form-specific data can be shown on this page without being visible to other users or indexed by search engines.\u003C\u002Fp>\n\u003Ch4>URL Redirect Feature\u003C\u002Fh4>\n\u003Cp>When a contact form is set to redirect to a URL and the user submits the form, it will send the Contact Form 7 email as usual, then redirect the user to the specified URL.\u003C\u002Fp>\n\u003Ch4>PayPal & Stripe Payments\u003C\u002Fh4>\n\u003Cp>Accept one-time payments through PayPal or Stripe directly from your contact forms. When a user submits a form with payments enabled, the email is sent as usual, then the user is redirected to complete payment. All payments are tracked in a dedicated admin area where you can view transaction status, amounts, and payment details.\u003C\u002Fp>\n\u003Ch4>Google reCAPTCHA v2\u003C\u002Fh4>\n\u003Cp>Protect your forms from spam with Google reCAPTCHA v2 verification. When enabled for a form, users must complete the reCAPTCHA challenge before submitting. Configure your site key and secret key in the settings, then enable reCAPTCHA on individual forms. Customize the theme (light or dark) and position (above or below submit button).\u003C\u002Fp>\n\u003Ch4>Country & Phone Fields\u003C\u002Fh4>\n\u003Cp>Add country dropdown and international phone number fields to your forms. The country field displays a searchable dropdown with country flags. The phone field includes a dial code selector that automatically formats phone numbers with the correct international prefix. Configure default countries, include\u002Fexclude specific countries, and set preferred countries to appear at the top of the list.\u003C\u002Fp>\n\u003Ch4>Database Submissions\u003C\u002Fh4>\n\u003Cp>Store all form submissions in your WordPress database for easy access and management. View submissions organized by form, search through entries, and export data to CSV. Each submission captures all form fields along with the submission date. Delete individual entries or export entire datasets for reporting.\u003C\u002Fp>\n\u003Ch4>Bookings & Appointments\u003C\u002Fh4>\n\u003Cp>Add date and time picker fields to your forms for appointment scheduling. Configure available days and hours, set slot durations, and define minimum advance booking time. The system prevents double-bookings by tracking confirmed appointments. Set unavailable dates for holidays or closures.\u003C\u002Fp>\n\u003Ch4>Material Design Theme\u003C\u002Fh4>\n\u003Cp>Apply beautiful Material Design styling to your Contact Form 7 forms. Enable per-form and customize the primary color, background color, and vertical spacing. Optional floating labels provide a modern input experience. The styling is applied via CSS classes so it won’t conflict with your theme.\u003C\u002Fp>\n\u003Ch4>List of Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Modular system – enable only the features you need\u003C\u002Fli>\n\u003Cli>Each Contact Form can redirect to its own URL\u003C\u002Fli>\n\u003Cli>Each Contact Form can redirect to a Thank You Page\u003C\u002Fli>\n\u003Cli>Accept PayPal and Stripe payments\u003C\u002Fli>\n\u003Cli>Google reCAPTCHA v2 spam protection\u003C\u002Fli>\n\u003Cli>Country dropdown and international phone fields\u003C\u002Fli>\n\u003Cli>Database storage with CSV export\u003C\u002Fli>\n\u003Cli>Booking date and time pickers\u003C\u002Fli>\n\u003Cli>Material Design form styling\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>If you have any problems, questions, or issues about this plugin then please create a support request and we will get back to you quickly.\u003C\u002Fp>\n\u003Cp>WPPlugin LLC is based in Boulder, Colorado. You can visit WP Plugin’s website at wpplugin.org. Various trademarks held by their respective owners.\u003C\u002Fp>\n",8000,76535,66,10,"2026-01-12T20:56:00.000Z","6.9.4","3.0","5.6",[19,20,21,22,23],"appointments","contact-form-7","database","payments","recaptcha","https:\u002F\u002Fwpplugin.org\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.2.1.zip",98,3,0,"2025-01-14 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[33,51,63],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":29,"updated_date":45,"references":46,"days_to_patch":48,"patch_diff_files":49,"patch_trac_url":38,"research_status":38,"research_verified":50,"research_rounds_completed":28,"research_plan":38,"research_summary":38,"research_vulnerable_code":38,"research_fix_diff":38,"research_exploit_outline":38,"research_model_used":38,"research_started_at":38,"research_completed_at":38,"research_error":38,"poc_status":38,"poc_video_id":38,"poc_summary":38,"poc_steps":38,"poc_tested_at":38,"poc_wp_version":38,"poc_php_version":38,"poc_playwright_script":38,"poc_exploit_code":38,"poc_has_trace":50,"poc_model_used":38,"poc_verification_depth":38},"CVE-2024-12423","contact-form-7-redirect-thank-you-page-reflected-cross-site-scripting","Contact Form 7 Redirect & Thank You Page \u003C= 1.0.7 - Reflected Cross-Site Scripting","The Contact Form 7 Redirect & Thank You Page plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'post' parameter in all versions up to, and including, 1.0.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=1.0.7","1.0.8","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-01-15 09:25:55",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F9d67965c-f8f3-4868-a261-81cfc80dbcb3?source=api-prod",1,[],false,{"id":52,"url_slug":53,"title":54,"description":55,"plugin_slug":4,"theme_slug":38,"affected_versions":56,"patched_in_version":57,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":58,"updated_date":59,"references":60,"days_to_patch":48,"patch_diff_files":62,"patch_trac_url":38,"research_status":38,"research_verified":50,"research_rounds_completed":28,"research_plan":38,"research_summary":38,"research_vulnerable_code":38,"research_fix_diff":38,"research_exploit_outline":38,"research_model_used":38,"research_started_at":38,"research_completed_at":38,"research_error":38,"poc_status":38,"poc_video_id":38,"poc_summary":38,"poc_steps":38,"poc_tested_at":38,"poc_wp_version":38,"poc_php_version":38,"poc_playwright_script":38,"poc_exploit_code":38,"poc_has_trace":50,"poc_model_used":38,"poc_verification_depth":38},"CVE-2024-10685","contact-form-7-redirect-thank-you-page-reflected-cross-site-scripting-2","Contact Form 7 Redirect & Thank You Page \u003C= 1.0.6 - Reflected Cross-Site Scripting","The Contact Form 7 Redirect & Thank You Page plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions up to, and including, 1.0.6 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.","\u003C=1.0.6","1.0.7","2024-11-11 15:08:10","2024-11-12 03:24:58",[61],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ff52285e0-e78d-4231-8ff9-53fbe568fcc2?source=api-prod",[],{"id":64,"url_slug":65,"title":66,"description":67,"plugin_slug":4,"theme_slug":38,"affected_versions":68,"patched_in_version":69,"severity":41,"cvss_score":70,"cvss_vector":71,"vuln_type":72,"published_date":73,"updated_date":74,"references":75,"days_to_patch":77,"patch_diff_files":78,"patch_trac_url":38,"research_status":38,"research_verified":50,"research_rounds_completed":28,"research_plan":38,"research_summary":38,"research_vulnerable_code":38,"research_fix_diff":38,"research_exploit_outline":38,"research_model_used":38,"research_started_at":38,"research_completed_at":38,"research_error":38,"poc_status":38,"poc_video_id":38,"poc_summary":38,"poc_steps":38,"poc_tested_at":38,"poc_wp_version":38,"poc_php_version":38,"poc_playwright_script":38,"poc_exploit_code":38,"poc_has_trace":50,"poc_model_used":38,"poc_verification_depth":38},"CVE-2023-24395","contact-form-7-redirect-thank-you-page-cross-site-request-forgery-via-cf7rladmintable","Contact Form 7 Redirect & Thank You Page \u003C= 1.0.3 - Cross-Site Request Forgery via cf7rl_admin_table","The Contact Form 7 Redirect & Thank You Page plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.3. This is due to missing or incorrect nonce validation on the cf7rl_admin_table function. This makes it possible for unauthenticated attackers to modify the plugin's settings via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.","\u003C=1.0.3","1.0.4",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2023-03-15 00:00:00","2024-01-22 19:56:02",[76],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F99f831f2-fb96-4dc8-ba3d-6015fbc7e2e1?source=api-prod",314,[],{"slug":80,"display_name":7,"profile_url":8,"plugin_count":81,"total_installs":82,"avg_security_score":83,"avg_patch_time_days":84,"trust_score":85,"computed_at":86},"scottpaterson",12,43740,96,267,76,"2026-05-19T17:36:37.388Z",[88,113,133,155,175],{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":94,"short_description":95,"active_installs":96,"downloaded":97,"rating":98,"num_ratings":99,"last_updated":100,"tested_up_to":15,"requires_at_least":101,"requires_php":102,"tags":103,"homepage":108,"download_link":109,"security_score":110,"vuln_count":111,"unpatched_count":28,"last_vuln_date":112,"fetched_at":30},"contact-form-cfdb7","Database Addon for Contact Form 7 – CFDB7","1.3.5","Arshid","https:\u002F\u002Fprofiles.wordpress.org\u002Farshidkv12\u002F","\u003Cp>The “CFDB7” plugin saves contact form 7 submissions to your WordPress database. Export the data to a CSV file.\u003Cbr \u002F>\nBy simply installing the plugin, it will automatically begin to capture form submissions from contact form 7.\u003C\u002Fp>\n\u003Ch4>Features of CFDB 7\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>No configuration is needed\u003C\u002Fli>\n\u003Cli>Save Contact Form 7 form submitted data to the database.\u003C\u002Fli>\n\u003Cli>Single database table for all contact form 7 forms\u003C\u002Fli>\n\u003Cli>Easy to use and lightweight plugin\u003C\u002Fli>\n\u003Cli>Developer friendly & easy to customize\u003C\u002Fli>\n\u003Cli>Display all created contact form 7 form list.\u003C\u002Fli>\n\u003Cli>Export CF7 DB (CF7 Database – cf7db) data in CSV file\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Form Email Testing Tool\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmailmug.net\" rel=\"nofollow ugc\">MailMug – SMTP Sandbox\u003C\u002Fa> \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Plugins\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpostbox-email-logs\u002F\" rel=\"ugc\">PostBox Email Log\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-mail-smtp-mailer\u002F\" rel=\"ugc\">WP mail smtp\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Pro Addons\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fciphercoin.com\u002Fdownloads\u002Fpublic-export-csv\u002F\" rel=\"nofollow ugc\">Scheduled CSV Export\u003C\u002Fa>\u003Cbr \u002F>\nAutomatically export CFDB7 form entries to CSV on a schedule\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fciphercoin.com\u002Fdownloads\u002Fcontact-form-7-column-base-mysql-database-addon\u002F\" rel=\"nofollow ugc\">Advanced MYSQL DB\u003C\u002Fa>\u003Cbr \u002F>\nSeparate MySQL column for each cf7 input field\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fciphercoin.com\u002Fdownloads\u002Fexcel-xlsx-spreadsheet\u002F\" rel=\"nofollow ugc\">Excel Spreadsheet (XLSX) Extension\u003C\u002Fa>\u003Cbr \u002F>\nConnect CFDB7 to an external database or another DB\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fciphercoin.com\u002Fdownloads\u002Ffiledrop-contact-form-7\u002F\" rel=\"nofollow ugc\">Drag & Drop File Upload\u003C\u002Fa>\u003Cbr \u002F>\nContact form 7 drag and drop files upload plugin.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fciphercoin.com\u002Fdownloads\u002Fcfdb7-unique-field\u002F\" rel=\"nofollow ugc\">Already Submitted?\u003C\u002Fa>\u003Cbr \u002F>\nTrigger error if a field is already submitted\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fciphercoin.com\u002Fdownloads\u002Fcf7-popup-message\u002F\" rel=\"nofollow ugc\">Popup Message\u003C\u002Fa>\u003Cbr \u002F>\nReplace your validation and success messages with beautiful popup messages to attract visitors.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fciphercoin.com\u002Fdownloads\u002Fcfdb7-export-pdf-addon\u002F\" rel=\"nofollow ugc\">Export PDF File\u003C\u002Fa>\u003Cbr \u002F>\nEasy to export contact forms from database to PDF file\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fciphercoin.com\u002Fdownloads\u002Fcfdb7-import-csv-to-database\u002F\" rel=\"nofollow ugc\">Import CSV to Database\u003C\u002Fa>\u003Cbr \u002F>\nImport data from the CSV file to the CFDB7 database\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Support : \u003Ca href=\"https:\u002F\u002Fwww.ciphercoin.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fwww.ciphercoin.com\u002Fcontact\u002F\u003C\u002Fa>\u003Cbr \u002F>\nExtensions : \u003Ca href=\"https:\u002F\u002Fciphercoin.com\u002Fcontact-form-7-database-cfdb7-add-ons\u002F\" rel=\"nofollow ugc\">Contact form 7 more Add-ons\u003C\u002Fa>\u003C\u002Fp>\n","Save and manage Contact Form 7 messages. Never lose important data. It is a lightweight contact form 7 database plugin.",600000,8167230,100,1872,"2026-02-01T07:36:00.000Z","4.8","7.0",[104,105,20,106,107],"cf7","cf7-database","contact-form-7-db","wpcf7","https:\u002F\u002Fciphercoin.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontact-form-cfdb7.1.3.5.zip",90,7,"2025-07-03 21:37:34",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":98,"num_ratings":123,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":127,"tags":128,"homepage":127,"download_link":131,"security_score":132,"vuln_count":28,"unpatched_count":28,"last_vuln_date":38,"fetched_at":30},"wpcf7-recaptcha","ReCaptcha v2 for Contact Form 7","1.4.9","IQComputing","https:\u002F\u002Fprofiles.wordpress.org\u002Fiqcomputing\u002F","\u003Cp>Contact Form 7 v5.1 dropped support for reCaptcha v2 along with the \u003Ccode>[recaptcha]\u003C\u002Fcode> tag December 2018. This plugin brings that functionality back from Contact Form 7 5.0.5 and re-adds the \u003Ccode>[recaptcha]\u003C\u002Fcode> tag.\u003C\u002Fp>\n\u003Cp>If this plugin is installed before updating Contact Form 7 from v5.0.5 to v5.1.1 then it will carry over your old API keys. At that point you will just need to head to this plugins settings page to tell the website to use reCaptcha v2.\u003C\u002Fp>\n\u003Cp>Once installed and configured it should be the same reCaptcha functionality you are used to in previous versions of Contact Form 7.\u003C\u002Fp>\n\u003Ch3>IQComputing\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Like us on \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fiqcomputing\u002F\" title=\"IQComputing on Facebook\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Follow us on \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fiqcomputing\u002F\" title=\"IQComputing on Twitter\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Fork on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FIQComputing\u002Fwpcf7-recaptcha\" title=\"IQComputing on Github\" rel=\"nofollow ugc\">Github\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Adds reCaptcha v2 from Contact Form 7 5.0.5 that was dropped on Contact Form 7 5.1",200000,3915482,89,"2025-04-15T22:52:00.000Z","6.7.5","4.9","",[20,129,23,130],"contact-form-7-recaptcha","spam","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpcf7-recaptcha.1.4.9.zip",92,{"slug":134,"name":135,"version":136,"author":137,"author_profile":138,"description":139,"short_description":140,"active_installs":141,"downloaded":142,"rating":143,"num_ratings":144,"last_updated":145,"tested_up_to":15,"requires_at_least":146,"requires_php":127,"tags":147,"homepage":127,"download_link":151,"security_score":152,"vuln_count":153,"unpatched_count":28,"last_vuln_date":154,"fetched_at":30},"contact-form-7-simple-recaptcha","Contact Form 7 Captcha","0.1.7","LukasApps","https:\u002F\u002Fprofiles.wordpress.org\u002F247wd\u002F","\u003Cp>Protect your Contact Form 7 forms with \u003Cstrong>Google reCAPTCHA V2\u003C\u002Fstrong>, \u003Cstrong>Google reCAPTCHA V3\u003C\u002Fstrong>, \u003Cstrong>hCAPTCHA\u003C\u002Fstrong>, or \u003Cstrong>Cloudflare Turnstile\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Easy integration and supports multiple forms on a single page.\u003C\u002Fp>\n\u003Ch3>Four CAPTCHA Options\u003C\u002Fh3>\n\u003Cp>Choose the CAPTCHA provider that works best for you:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Google reCAPTCHA V2\u003C\u002Fstrong> — The industry-standard “I’m not a robot” checkbox, trusted by millions of sites.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Google reCAPTCHA V3\u003C\u002Fstrong> — The industry-standard invisible score-based verification, trusted by millions of sites.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>hCAPTCHA\u003C\u002Fstrong> — A privacy-first alternative that offers robust bot protection while keeping user data secure.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cloudflare Turnstile\u003C\u002Fstrong> — A modern CAPTCHA that verifies users in the background, only requiring a simple click if the visitor appears suspicious.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Simple Setup\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Sign up with your chosen CAPTCHA provider and grab your Site Key and Secret Key.\u003C\u002Fli>\n\u003Cli>Paste them into \u003Cstrong>CF7 Captcha\u003C\u002Fstrong> in your WordPress admin.\u003C\u002Fli>\n\u003Cli>Add protection to any CF7 form in seconds using the shortcode provided in the same settings page.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Customizable Appearance\u003C\u002Fh3>\n\u003Cp>Each CAPTCHA widget supports customization options directly from the shortcode:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Size\u003C\u002Fstrong> — Choose between normal and compact to fit your form layout.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Theme\u003C\u002Fstrong> — Switch between light and dark themes (or auto for Turnstile) to match your site’s design.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Language\u003C\u002Fstrong> — Force any CAPTCHA to render in a specific language for your audience.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>All options are combinable, so you can mix and match to get the exact look you need.\u003C\u002Fp>\n\u003Ch3>Submission Insights (NEW in v0.1.7)\u003C\u002Fh3>\n\u003Cp>Go beyond just blocking spam. Submission Insights gives you full visibility into every form submission:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Sender IP\u003C\u002Fstrong> — See the IP address of the person who contacted you.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Source Page\u003C\u002Fstrong> — Know exactly which page on your site the form was filled out on.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Device & Browser\u003C\u002Fstrong> — Get technical details about the sender’s setup.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🚀 Want More? Upgrade to CF7 Captcha Pro\u003C\u002Fh3>\n\u003Cp>This free version gives you solid CAPTCHA protection. But the smartest bots are already solving CAPTCHAs.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>CF7 Captcha Pro\u003C\u002Fstrong> adds six extra layers of invisible spam defense on top of what you already have here, plus a full set of tools to capture and act on every lead your forms collect.\u003C\u002Fp>\n\u003Ch3>What you get with Pro\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>6-Layer Spam Defense\u003C\u002Fstrong> — stops 99.9% of spam without ever bothering your visitors:\u003Cbr \u002F>\n– \u003Cstrong>Advanced Honeypot\u003C\u002Fstrong> — invisible trap fields with names that regenerate every 24 hours.\u003Cbr \u002F>\n– \u003Cstrong>Time Limit Validation\u003C\u002Fstrong> — bots submit in 0.2 seconds. Humans take 15–30. This blocks anything that moves too fast (or stays too long).\u003Cbr \u002F>\n– \u003Cstrong>Rate Limiting\u003C\u002Fstrong> — caps submissions per IP so bot networks can’t flood your inbox or burn through your email quota.\u003Cbr \u002F>\n– \u003Cstrong>Geographic Blocking\u003C\u002Fstrong> — whitelist only the countries you serve, or blacklist known spam regions.\u003Cbr \u002F>\n– \u003Cstrong>IP Pattern Blocking\u003C\u002Fstrong> — block single IPs, wildcards, CIDR ranges, or entire subnets when you know exactly where an attack is coming from.\u003Cbr \u002F>\n– \u003Cstrong>Word Filter\u003C\u002Fstrong> — scans every submission for spam keywords, phishing URLs, and known scam phrases before it reaches you.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Lead Recovery\u003C\u002Fstrong> — 70% of people who start filling out a form never submit it. Pro captures their data in real-time as they type, so you can follow up on leads that would otherwise vanish.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Database Storage & Export\u003C\u002Fstrong> — every submission is saved with full metadata (IP, browser, referrer, timestamp). Export to CSV, Excel, JSON, or PDF whenever you need it. No more lost leads if your email fails.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Webhooks\u003C\u002Fstrong> — send form data instantly to any URL. Connect to Zapier, Salesforce, Slack, Google Sheets, or any custom API. Multiple webhooks per form, with retry logic built in.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Mailchimp Integration\u003C\u002Fstrong> — submissions automatically added to your Mailchimp lists. Field mapping, tags, opt-in handling.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Twilio SMS\u003C\u002Fstrong> — receive instant alerts for every submission or send automated SMS replies to your clients.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Comprehensive Logging\u003C\u002Fstrong> — every spam block, webhook call, and integration event is logged. Debug any issue in minutes instead of hours.\u003C\u002Fp>\n\u003Cp>👉 \u003Cstrong>\u003Ca href=\"https:\u002F\u002Flukasapps.de\u002Fwordpress\u002Fplugins\u002Fcf7-captcha-pro\u002F\" rel=\"nofollow ugc\">Get CF7 Captcha Pro\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n","Protect your Contact Form 7 forms with Google reCAPTCHA V2, Google reCAPTCHA V3, hCAPTCHA, or Cloudflare Turnstile.",100000,1054388,82,48,"2026-02-01T21:19:00.000Z","4.1.2",[148,20,149,23,150],"captcha","hcaptcha","spam-protection","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontact-form-7-simple-recaptcha.zip",99,2,"2022-06-27 00:00:00",{"slug":156,"name":157,"version":158,"author":159,"author_profile":160,"description":161,"short_description":162,"active_installs":163,"downloaded":164,"rating":165,"num_ratings":166,"last_updated":167,"tested_up_to":168,"requires_at_least":169,"requires_php":127,"tags":170,"homepage":127,"download_link":173,"security_score":174,"vuln_count":28,"unpatched_count":28,"last_vuln_date":38,"fetched_at":30},"invisible-recaptcha","Invisible reCaptcha for WordPress","1.2.3","MihChe","https:\u002F\u002Fprofiles.wordpress.org\u002Fmihche\u002F","\u003Cp>Invisible reCaptcha for WordPress is an extremely powerful plugin which integrates the new \u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002Fintro\u002Finvisible.html\" rel=\"nofollow ugc\">Invisible reCaptcha by Google\u003C\u002Fa> with your WordPress site.\u003C\u002Fp>\n\u003Ch4>Summary of features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>WordPress Invisible reCaptcha\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>- Login form protection - annihilates Brute Force attacks\n- Registration form protection\n- Comments form protection\n- Forgot Password form protection\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>WooCommerce Invisible reCaptcha\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>- Login form protection\n- Registration form protection\n- Product Review form protection\n- Lost Password form protection\n- Reset Password form protection\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Contact Form 7 Invisible reCaptcha\u003C\u002Fstrong>\u003Cbr \u002F>\n    – Protect your Contact Form 7 forms with Invisible reCaptcha\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Gravity Forms Invisible reCaptcha\u003C\u002Fstrong>\u003Cbr \u002F>\n    – Protect your Gravity Forms with Invisible reCaptcha\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fultra-community\u002F\" rel=\"ugc\">Ultra Community\u003C\u002Fa> Invisible reCaptcha\u003C\u002Fstrong>\u003Cbr \u002F>\n    – Login form protection\u003Cbr \u002F>\n    – Registration form protection\u003C\u002Fp>\n\u003Cp>\u003Cstrong>BuddyPress Invisible reCaptcha\u003C\u002Fstrong>\u003Cbr \u002F>\n    – Protect your BuddyPress registration form with Invisible reCaptcha\u003C\u002Fp>\n\u003Ch4>Compatibility\u003C\u002Fh4>\n\u003Cp>On a \u003Cstrong>WP Multisite\u003C\u002Fstrong> you can either activate the plugin network wide or on a single site.\u003C\u002Fp>\n\u003Ch4>How-To and Troubleshooting\u003C\u002Fh4>\n\u003Cp>Check out our \u003Ca href=\"https:\u002F\u002Fultracommunity.com\u002Fforums\u002Fforum\u002Finvisible-recaptcha\u002F\" rel=\"nofollow ugc\">Invisible reCaptcha for WordPress Support Forum\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Extending Invisible reCaptcha\u003C\u002Fh4>\n\u003Cp>Here are some useful hooks to help developers integrate Invisible reCaptcha with any plugin or custom form\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Actions\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>- google_invre_render_widget_action - renders the recaptcha widget\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Filters\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>- google_invre_is_valid_request_filter   - used to check if Google approved the request (returns bool true\u002Ffalse)\n- google_invre_widget_output_html_filter - used to change the recaptcha widget output\n- google_invre_language_code_filter      - used to change the badge\u002Fchallenge language code\n- google_invre_badge_position_filter     - used to change the badge position (possible returning values are: 'bottomright', 'bottomleft', 'inline')\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Examples of using  Invisible reCaptcha hooks\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cul>\n\u003Cli>\n\u003Cp>Add Invisible reCaptcha into any form\u003C\u002Fp>\n\u003Cp>Just call\u003Cbr \u002F>\ndo_action(‘google_invre_render_widget_action’);\u003Cbr \u002F>\nanywhere before form closing tag\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Validate form post request\u003C\u002Fp>\n\u003Cp>$is_valid = apply_filters(‘google_invre_is_valid_request_filter’, true);\u003Cbr \u002F>\nif( ! $is_valid )\u003Cbr \u002F>\n{\u003Cbr \u002F>\n    \u002F\u002F handle error here\u003Cbr \u002F>\n}\u003Cbr \u002F>\nelse\u003Cbr \u002F>\n{\u003Cbr \u002F>\n    \u002F\u002F continue with your logic\u003Cbr \u002F>\n}\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Change the badge\u002Fchallenge language code\u003C\u002Fp>\n\u003Cp>add_filter( ‘google_invre_language_code_filter’, ‘myprefix_change_recaptcha_language’ );\u003Cbr \u002F>\nfunction myprefix_change_recaptcha_language($language_code){\u003Cbr \u002F>\n    $language_code = ‘fr’; \u002F\u002F French\u003Cbr \u002F>\n    return $language_code;\u003Cbr \u002F>\n}\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>See all \u003Ca href=\"https:\u002F\u002Fdevelopers.google.com\u002Frecaptcha\u002Fdocs\u002Flanguage\" rel=\"nofollow ugc\">reCaptcha Language Codes\u003C\u002Fa>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Note: This plugin requires PHP 5.3 or higher to be activated.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","Invisible reCaptcha for WordPress plugin helps you to protect your sites against bad spam bots using the new Invisible reCaptcha by Google.",90000,859062,86,133,"2020-04-07T16:31:00.000Z","5.4.19","4.0",[171,156,172],"contact-form-7-invisible-recaptcha","woocommerce-invisible-recaptcha","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finvisible-recaptcha.zip",85,{"slug":176,"name":177,"version":178,"author":179,"author_profile":180,"description":181,"short_description":182,"active_installs":183,"downloaded":184,"rating":110,"num_ratings":185,"last_updated":186,"tested_up_to":15,"requires_at_least":169,"requires_php":187,"tags":188,"homepage":190,"download_link":191,"security_score":192,"vuln_count":193,"unpatched_count":28,"last_vuln_date":194,"fetched_at":30},"advanced-cf7-db","Advanced Contact form 7 DB","2.1.0","Vsourz Digital","https:\u002F\u002Fprofiles.wordpress.org\u002Fvsourz1td\u002F","\u003Cp>Easy plug & play plugin to store all enquiry details received through website Contact Form 7 forms. Simply install & activate plugin to store all your enquiries in wp-admin.\u003C\u002Fp>\n\u003Cp>Every form that is submitted in the website will be captured into database using “Advanced Contact Form 7” plugin. Follow below steps to view form details:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Select form from drop-down\u003C\u002Fli>\n\u003Cli>View all form data for that particular form\u003C\u002Fli>\n\u003Cli>Option to search \u002F filter forms by keyword or date range\u003C\u002Fli>\n\u003Cli>View attachments in wp-content\u002Fuploads\u002Fadvanced-cf7-upload\u003C\u002Fli>\n\u003Cli>Option to download attachments from wp-admin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Compatible with \u003Cstrong>Multisite feature\u003C\u002Fstrong> – Efficient data management by storing form details website wise\u003C\u002Fli>\n\u003Cli>Securely stores form data into database\u003C\u002Fli>\n\u003Cli>Easily modify enquiry data\u003C\u002Fli>\n\u003Cli>View list of all forms received through Contact Form 7\u003C\u002Fli>\n\u003Cli>Search \u002F filter form details using keyword\u003C\u002Fli>\n\u003Cli>Search \u002F filter enquiries using custom date-range filter\u003C\u002Fli>\n\u003Cli>Export data in \u003Cstrong>CSV, Excel\u003C\u002Fstrong> format by applying filters\u003C\u002Fli>\n\u003Cli>View attachment download link\u003C\u002Fli>\n\u003Cli>Advanced pagination with an option to jump to any page to view specific entries\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable columns with personalized tabular structure\u003C\u002Fli>\n\u003Cli>Drag & Drop with ease to view data in customized tabular view\u003C\u002Fli>\n\u003Cli>Option to select multiple entries at a time for deleting \u002F exporting entries\u003C\u002Fli>\n\u003Cli>Rename field label names easily\u003C\u002Fli>\n\u003Cli>Import form details using CSV\u003C\u002Fli>\n\u003Cli>Filter to exclude data from creating record in CF7 database\u003C\u002Fli>\n\u003Cli>Modify form data before creating record in CF7 database\u003C\u002Fli>\n\u003Cli>Generate shortcode using different parameters to display specific data only. For more details, please refer plugin “Shortcode” screen\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Commercial Features\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>1. Advanced CF7 DB – GDPR Compliant\u003C\u002Fstrong>\u003Cbr \u002F>\nAdvanced CF7 DB – GDPR Compliant plugin assists website and web-shop owners to comply with European privacy regulations known as GDPR. Advanced CF7 DB – GDPR Compliant is an add-on of Advanced CF7 DB, it is based on GDPR rules to export or erase user’s personal data stored with advanced CF7 DB.\u003C\u002Fp>\n\u003Cp>Download Advanced CF7 DB – GDPR Complaint plugin from \u003Ca href=\"https:\u002F\u002Fcodecanyon.net\u002Fitem\u002Fadvanced-cf7-db-gdpr-compliant\u002F22386060\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Advanced CF7 DB – GDPR Compliant Plugin Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Compatible with the latest WordPress version 5.1.1 and later for GDPR compliances\u003C\u002Fli>\n\u003Cli>Manages data as per new regulations and up to the mark performance\u003C\u002Fli>\n\u003Cli>View personal data of individual record On-Request, categorized as per CF7 forms and websites\u003C\u002Fli>\n\u003Cli>Erase personal data specific to CF7 that are not required\u003C\u002Fli>\n\u003Cli>Website owners can export a ZIP file containing a user’s personal data, including data collected by Advanced CF7 DB plugin\u003C\u002Fli>\n\u003Cli>Website owners can erase a user’s personal data, including data collected by Advanced CF7 DB plugin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>2. Schedule Report\u003C\u002Fstrong>\u003Cbr \u002F>\nWe have introduced a new add-on “Schedule Report” focusing on day-to-day business specific requirement like:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Daily Report\u003C\u002Fli>\n\u003Cli>Weekly Report\u003C\u002Fli>\n\u003Cli>Monthly Report\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Reports will be automatically generated and will be available to you in your e-mail address as per scheduled routine.\u003C\u002Fp>\n\u003Cp>Download Schedule Report plugin from \u003Ca href=\"https:\u002F\u002Fcodecanyon.net\u002Fitem\u002Fschedule-report-for-advanced-cf7-db\u002F21560647?s_rank=8\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Schedule Report Plugin Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Auto-generated CSV report are sent in emails at scheduled time\u003C\u002Fli>\n\u003Cli>Schedule multiple email events for receiving different enquiry form reports\u003C\u002Fli>\n\u003Cli>Option to select datasheet columns for reports to be generated\u003C\u002Fli>\n\u003Cli>Option to filter data while creating the scheduled event for a particular report\u003C\u002Fli>\n\u003Cli>Option to create email templates by defining To, From, Email message for schedule reports\u003C\u002Fli>\n\u003Cli>Scheduled Report will also be added to wp-cron and will be triggered as per schedule\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>3. Advanced CF7 DB – User Access Manager\u003C\u002Fstrong>\u003Cbr \u002F>\nNeed to provide access to other users? Your, search ends now, this plugin provides access to individual users or user groups and accordingly user(s) can view or edit their contact form DB data.\u003C\u002Fp>\n\u003Cp>Download Advanced CF7 DB – User Access Manager plugin from \u003Ca href=\"https:\u002F\u002Fcodecanyon.net\u002Fitem\u002Fadvanced-cf7-db-user-access-manager\u002F22058788\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Advanced CF7 DB – User Access Manager Plugin Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Provide access of CF7 DB to view & update data to individual users or user groups\u003C\u002Fli>\n\u003Cli>Provide access to single user for creating single\u002Fmultiple forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Plugin Customization\u003C\u002Fh3>\n\u003Cp>Restrict IP address storage – Various countries restrict websites to store end users IP address. We have a provision to Restrict IP address storage. Now, IP address can be neglected while storing form’s data into database.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How to restrict IP address storage?\u003C\u002Fstrong>\u003Cbr \u002F>\nNavigate to -> wp-content\u002Fthemes\u002F{active theme folder}\u002Ffunctions.php\u003Cbr \u002F>\nOpen the functions.php file and place the code do_shortcode( ‘[cf7-db-display-ip]’ ); at the end of the file.\u003C\u002Fp>\n\u003Cp>For support, email us at: \u003Ca href=\"mailto:wp.support@vsourz.com\" rel=\"nofollow ugc\">wp.support@vsourz.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>How to use?\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Install Plugin via WordPress Admin – Go to Admin > Plugins > Add New.\u003C\u002Fli>\n\u003Cli>View form entries – Go To Admin >> Advanced CF7 DB >> Advanced CF7 DB >> Select form name.\u003C\u002Fli>\n\u003Cli>Import CSV file – Go To Admin >> Advanced CF7 DB >> Import CSV >> Select form name.\u003C\u002Fli>\n\u003C\u002Fol>\n","Save all contact form 7 form submitted data to the database, View, Ordering, Change field labels and Import\u002FExport data using CSV.",70000,1104661,43,"2026-04-02T12:45:00.000Z","7.4",[176,20,106,189,21],"contact-form-db","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadvanced-cf7-db\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-cf7-db.2.1.0.zip",83,8,"2026-04-08 05:13:07",{"attackSurface":196,"codeSignals":590,"taintFlows":711,"riskAssessment":921,"analyzedAt":932},{"hooks":197,"ajaxHandlers":534,"restRoutes":575,"shortcodes":585,"cronEvents":586,"entryPointCount":589,"unprotectedCount":153},[198,205,208,212,216,220,224,229,233,237,241,244,249,253,257,261,265,268,272,276,281,285,288,292,295,298,301,304,307,310,313,316,320,323,327,330,335,338,341,345,349,353,355,358,360,364,367,372,375,379,382,385,387,391,394,397,401,405,408,412,416,420,424,428,432,435,439,443,446,451,454,459,462,465,469,472,476,480,484,487,491,494,498,500,503,506,509,512,515,519,523,527,530],{"type":199,"name":200,"callback":201,"priority":202,"file":203,"line":204},"action","init","cf7rl_check_version_migration",20,"cf7-redirect.php",203,{"type":199,"name":206,"callback":207,"file":203,"line":77},"admin_notices","cf7rl_my_admin_notice",{"type":199,"name":209,"callback":210,"file":203,"line":211},"admin_enqueue_scripts","cf7rl_enqueue_deactivation_survey",352,{"type":199,"name":213,"callback":214,"file":215,"line":132},"cf7rl_daily_scheduled_events","cf7rl_get_extensions","includes\\admin\\extensions.php",{"type":199,"name":217,"callback":218,"priority":202,"file":219,"line":111},"admin_menu","cf7rl_admin_menu","includes\\admin\\menu_links.php",{"type":199,"name":217,"callback":221,"priority":222,"file":219,"line":223},"cf7rl_business_essentials_menu",30,19,{"type":225,"name":226,"callback":227,"priority":13,"file":219,"line":228},"filter","plugin_action_links","cf7rl_plugin_settings_link",25,{"type":225,"name":230,"callback":231,"file":232,"line":81},"cf7rl_available_modules","my_custom_cf7rl_module","includes\\admin\\modules-example.php",{"type":199,"name":234,"callback":235,"file":232,"line":236},"wpcf7_before_send_mail","my_custom_feature_function",38,{"type":199,"name":238,"callback":239,"file":232,"line":240},"plugins_loaded","my_custom_feature_init",42,{"type":225,"name":230,"callback":242,"file":232,"line":243},"my_plugin_add_modules",46,{"type":225,"name":245,"callback":246,"file":247,"line":248},"wpcf7_editor_panels","cf7rl_editor_panels","includes\\admin\\tabs_page.php",23,{"type":199,"name":250,"callback":251,"file":247,"line":252},"wpcf7_after_save","cf7rl_save_contact_form",130,{"type":199,"name":209,"callback":254,"file":255,"line":256},"cf7rl_admin_enqueue","includes\\enqueue.php",18,{"type":199,"name":258,"callback":259,"priority":13,"file":255,"line":260},"wp_enqueue_scripts","cf7rl_public_enqueue",40,{"type":199,"name":206,"callback":262,"file":263,"line":264},"cf7rl_my_plugin_admin_notices","includes\\functions.php",13,{"type":199,"name":206,"callback":266,"file":263,"line":267},"cf7rl_review_admin_notice",67,{"type":199,"name":269,"callback":270,"file":263,"line":271},"admin_init","cf7rl_handle_review_notice_dismissal",91,{"type":199,"name":273,"callback":274,"priority":13,"file":275,"line":193},"wpcf7_init","cf7rl_add_booking_form_tags","includes\\modules\\bookings\\admin_functions.php",{"type":199,"name":277,"callback":278,"priority":279,"file":275,"line":280},"wpcf7_admin_init","cf7rl_add_tag_generator_booking",50,114,{"type":225,"name":282,"callback":283,"priority":13,"file":275,"line":284},"wpcf7_validate_bookingdate","cf7rl_bookingdate_validation_filter",213,{"type":225,"name":286,"callback":283,"priority":13,"file":275,"line":287},"wpcf7_validate_bookingdate*",214,{"type":225,"name":289,"callback":290,"priority":13,"file":275,"line":291},"wpcf7_validate_bookingtime","cf7rl_bookingtime_validation_filter",238,{"type":225,"name":293,"callback":290,"priority":13,"file":275,"line":294},"wpcf7_validate_bookingtime*",239,{"type":199,"name":234,"callback":296,"file":275,"line":297},"cf7rl_save_booking_on_submit",254,{"type":225,"name":245,"callback":299,"priority":202,"file":300,"line":193},"cf7rl_booking_editor_panel","includes\\modules\\bookings\\booking_admin_tab.php",{"type":199,"name":250,"callback":302,"file":300,"line":303},"cf7rl_save_booking_settings",179,{"type":199,"name":258,"callback":305,"file":306,"line":185},"cf7rl_booking_enqueue_frontend","includes\\modules\\bookings\\enqueue.php",{"type":199,"name":209,"callback":308,"file":306,"line":309},"cf7rl_booking_admin_enqueue",105,{"type":199,"name":273,"callback":311,"priority":13,"file":312,"line":193},"cf7rl_add_country_phone_form_tags","includes\\modules\\country_phone\\admin_functions.php",{"type":199,"name":277,"callback":314,"priority":279,"file":312,"line":315},"cf7rl_add_tag_generator_country_phone",221,{"type":225,"name":317,"callback":318,"priority":13,"file":312,"line":319},"wpcf7_validate_countryselect","cf7rl_countryselect_validation_filter",326,{"type":225,"name":321,"callback":318,"priority":13,"file":312,"line":322},"wpcf7_validate_countryselect*",327,{"type":225,"name":324,"callback":325,"priority":13,"file":312,"line":326},"wpcf7_validate_teltext","cf7rl_teltext_validation_filter",342,{"type":225,"name":328,"callback":325,"priority":13,"file":312,"line":329},"wpcf7_validate_teltext*",343,{"type":225,"name":331,"callback":332,"file":333,"line":334},"wpcf7_posted_data","cf7rl_format_phone_field_data","includes\\modules\\country_phone\\country_phone_functions.php",367,{"type":199,"name":258,"callback":336,"file":337,"line":193},"cf7rl_country_phone_enqueue_frontend","includes\\modules\\country_phone\\enqueue.php",{"type":199,"name":209,"callback":339,"file":337,"line":340},"cf7rl_country_phone_admin_enqueue",65,{"type":199,"name":269,"callback":342,"file":343,"line":344},"cf7rl_db_process_admin_actions","includes\\modules\\database_submissions\\admin_page.php",240,{"type":225,"name":346,"callback":347,"priority":13,"file":343,"line":348},"set-screen-option","cf7rl_db_set_screen_option",251,{"type":199,"name":269,"callback":350,"file":351,"line":352},"cf7rl_db_init","includes\\modules\\database_submissions\\database_functions.php",45,{"type":199,"name":234,"callback":354,"file":351,"line":110},"cf7rl_db_save_submission",{"type":225,"name":245,"callback":356,"file":357,"line":223},"cf7rl_material_theme_editor_panel","includes\\modules\\material_theme\\admin_functions.php",{"type":199,"name":250,"callback":359,"file":357,"line":166},"cf7rl_save_material_theme_settings",{"type":199,"name":258,"callback":361,"priority":202,"file":362,"line":363},"cf7rl_enqueue_material_theme_assets","includes\\modules\\material_theme\\enqueue.php",70,{"type":199,"name":209,"callback":365,"file":362,"line":366},"cf7rl_enqueue_material_theme_admin_assets",93,{"type":225,"name":368,"callback":369,"priority":13,"file":370,"line":371},"wpcf7_form_class_attr","cf7rl_add_material_theme_class","includes\\modules\\material_theme\\material_theme_functions.php",57,{"type":199,"name":258,"callback":373,"priority":228,"file":370,"line":374},"cf7rl_material_theme_inline_styles",153,{"type":225,"name":376,"callback":377,"priority":13,"file":370,"line":378},"wpcf7_form_additional_atts","cf7rl_add_form_id_data_attribute",199,{"type":199,"name":200,"callback":380,"file":381,"line":193},"cf7rl_payments_init","includes\\modules\\payments\\cpt.php",{"type":199,"name":383,"callback":384,"file":381,"line":240},"edit_form_after_title","cf7rl_payments_print_id",{"type":199,"name":217,"callback":386,"file":381,"line":371},"cf7rl_payments_remove_meta_box",{"type":225,"name":388,"callback":389,"priority":13,"file":381,"line":390},"post_row_actions","cf7rl_remove_payments_quick_edit",169,{"type":199,"name":200,"callback":392,"file":381,"line":393},"cf7rl_register_payment_statuses",218,{"type":199,"name":395,"callback":396,"file":381,"line":348},"admin_footer-edit.php","cf7rl_custom_post_statuses_to_quick_edit",{"type":225,"name":398,"callback":399,"file":381,"line":400},"manage_cf7rl_payments_posts_columns","cf7rl_custom_edit_payments_columns",275,{"type":199,"name":402,"callback":403,"priority":152,"file":381,"line":404},"manage_cf7rl_payments_posts_custom_column","cf7rl_custom_edit_payments_columns_data",294,{"type":225,"name":406,"callback":407,"priority":13,"file":381,"line":319},"post_date_column_status","cf7rl_column_date_remove_status",{"type":225,"name":409,"callback":410,"priority":13,"file":381,"line":411},"post_date_column_time","cf7rl_column_date_format",337,{"type":199,"name":413,"callback":414,"priority":13,"file":381,"line":415},"restrict_manage_posts","filter_cf7rl_payments_by_payment_status",348,{"type":199,"name":417,"callback":418,"file":381,"line":419},"parse_query","cf7rl_payments_filter_query",391,{"type":225,"name":421,"callback":422,"priority":13,"file":381,"line":423},"wp_untrash_post_status","cf7rl_restore_payment_status",424,{"type":225,"name":425,"callback":426,"file":381,"line":427},"views_edit-cf7rl_payments","cf7rl_views_remove_mine",437,{"type":199,"name":429,"callback":430,"file":431,"line":193},"wp","cf7rl_payment_check_status_cronjob","includes\\modules\\payments\\cronjob.php",{"type":199,"name":433,"callback":434,"file":431,"line":223},"cf7rl_payment_check_status","cf7rl_payment_check_status_func",{"type":199,"name":209,"callback":436,"file":437,"line":438},"cf7rl_payments_admin_enqueue","includes\\modules\\payments\\enqueue.php",21,{"type":199,"name":440,"callback":441,"file":437,"line":442},"rest_api_init","closure",39,{"type":199,"name":258,"callback":444,"priority":13,"file":437,"line":445},"cf7rl_payments_public_enqueue",81,{"type":199,"name":447,"callback":448,"file":449,"line":450},"admin_head","cf7rl_show_cf7rl_payments_localhost_notice","includes\\modules\\payments\\functions.php",168,{"type":199,"name":206,"callback":452,"file":449,"line":453},"cf7rl_show_cf7rl_payments_localhost_admin_notice",189,{"type":225,"name":455,"callback":456,"file":457,"line":458},"wpcf7_load_js","__return_true","includes\\modules\\payments\\payment_functions.php",136,{"type":199,"name":200,"callback":460,"file":457,"line":461},"cf7rl_payments_enable_cf7_ajax",139,{"type":199,"name":200,"callback":463,"priority":48,"file":457,"line":464},"cf7rl_payments_session",157,{"type":199,"name":466,"callback":467,"file":468,"line":13},"template_redirect","cf7rl_ipn_test","includes\\modules\\payments\\paypal_handler.php",{"type":199,"name":440,"callback":470,"file":468,"line":471},"cf7rl_paypal_ipn_listener",49,{"type":199,"name":429,"callback":473,"file":474,"line":475},"cf7rl_free_ppcp_order_finalize","includes\\modules\\payments\\ppcp_frontend.php",64,{"type":225,"name":477,"callback":478,"file":474,"line":479},"wpcf7_form_elements","cf7rl_free_ppcp_message",108,{"type":199,"name":466,"callback":481,"file":482,"line":483},"cf7rl_payment_redirect_method","includes\\modules\\payments\\redirect_methods.php",47,{"type":199,"name":234,"callback":485,"file":482,"line":486},"cf7rl_payment_before_send_mail",156,{"type":199,"name":238,"callback":488,"file":489,"line":490},"cf7rl_stripe_connect_completion","includes\\modules\\payments\\stripe-connect.php",131,{"type":199,"name":238,"callback":492,"file":489,"line":493},"cf7rl_stripe_disconnected",187,{"type":199,"name":234,"callback":495,"file":496,"line":497},"cf7rl_insert_webhook_data_to_plugin_settings","includes\\modules\\payments\\stripe_handler.php",9,{"type":199,"name":440,"callback":499,"file":496,"line":458},"cf7rl_stripe_webhook_listener",{"type":199,"name":238,"callback":501,"file":496,"line":502},"cf7rl_stripe_connect_webhook_listener",224,{"type":225,"name":245,"callback":504,"file":505,"line":438},"cf7rl_payment_editor_panels","includes\\modules\\payments\\tabs_page.php",{"type":199,"name":250,"callback":507,"file":505,"line":508},"cf7rl_payment_save_contact_form",102,{"type":225,"name":245,"callback":510,"priority":202,"file":511,"line":256},"cf7rl_recaptcha_editor_panel","includes\\modules\\recaptcha\\admin_functions.php",{"type":199,"name":250,"callback":513,"file":511,"line":514},"cf7rl_save_recaptcha_settings",95,{"type":199,"name":258,"callback":516,"priority":202,"file":517,"line":518},"cf7rl_enqueue_recaptcha_scripts","includes\\modules\\recaptcha\\enqueue.php",60,{"type":225,"name":520,"callback":521,"priority":13,"file":522,"line":280},"wpcf7_spam","cf7rl_recaptcha_spam_filter","includes\\modules\\recaptcha\\recaptcha_functions.php",{"type":225,"name":524,"callback":525,"priority":13,"file":522,"line":526},"wpcf7_display_message","cf7rl_recaptcha_custom_message",158,{"type":225,"name":477,"callback":528,"priority":13,"file":522,"line":529},"cf7rl_add_recaptcha_to_form",242,{"type":199,"name":531,"callback":441,"priority":532,"file":522,"line":533},"wp_footer",999,249,[535,539,543,544,548,550,555,559,562,564,568,570,574],{"action":536,"nopriv":50,"callback":537,"hasNonce":538,"hasCapCheck":538,"file":263,"line":479},"cf7rl_dismiss_review_notice","cf7rl_ajax_dismiss_review_notice",true,{"action":540,"nopriv":50,"callback":541,"hasNonce":538,"hasCapCheck":50,"file":306,"line":542},"cf7rl_get_disabled_dates","cf7rl_ajax_get_disabled_dates",135,{"action":540,"nopriv":538,"callback":541,"hasNonce":538,"hasCapCheck":50,"file":306,"line":458},{"action":545,"nopriv":50,"callback":546,"hasNonce":538,"hasCapCheck":50,"file":306,"line":547},"cf7rl_get_time_slots","cf7rl_ajax_get_time_slots",197,{"action":545,"nopriv":538,"callback":546,"hasNonce":538,"hasCapCheck":50,"file":306,"line":549},198,{"action":551,"nopriv":50,"callback":552,"hasNonce":538,"hasCapCheck":50,"file":553,"line":554},"cf7rl-ppcp-onboarding-start","cf7rl_free_ppcp_onboarding_start_ajax","includes\\modules\\payments\\ppcp.php",51,{"action":556,"nopriv":50,"callback":557,"hasNonce":538,"hasCapCheck":50,"file":553,"line":558},"cf7rl-ppcp-disconnect","cf7rl_free_ppcp_disconnect_ajax",116,{"action":560,"nopriv":50,"callback":561,"hasNonce":538,"hasCapCheck":50,"file":482,"line":558},"cf7rl_get_form_stripe_success","cf7rl_get_form_stripe_success_callback",{"action":560,"nopriv":538,"callback":561,"hasNonce":538,"hasCapCheck":50,"file":482,"line":563},117,{"action":565,"nopriv":50,"callback":566,"hasNonce":538,"hasCapCheck":50,"file":482,"line":567},"cf7rl_get_form_post","cf7rl_get_form_post_callback",256,{"action":565,"nopriv":538,"callback":566,"hasNonce":538,"hasCapCheck":50,"file":482,"line":569},257,{"action":571,"nopriv":50,"callback":572,"hasNonce":538,"hasCapCheck":50,"file":573,"line":12},"cf7rl_get_form_thank","cf7rl_get_form_thank_callback","includes\\redirect_methods.php",{"action":571,"nopriv":538,"callback":572,"hasNonce":538,"hasCapCheck":50,"file":573,"line":267},[576,582],{"namespace":577,"route":578,"methods":579,"callback":566,"permissionCallback":456,"file":437,"line":581},"cf7rl\u002Fv1","\u002Fcf7rl_get_form_post",[580],"GET",41,{"namespace":577,"route":583,"methods":584,"callback":561,"permissionCallback":456,"file":437,"line":144},"\u002Fcf7rl_get_form_stripe_success",[580],[],[587],{"hook":433,"callback":433,"file":431,"line":588},11,15,{"dangerousFunctions":591,"sqlUsage":592,"outputEscaping":613,"fileOperations":27,"externalRequests":81,"nonceChecks":589,"capabilityChecks":193,"bundledLibraries":710},[],{"prepared":593,"raw":588,"locations":594},16,[595,598,600,603,604,606,607,608,610,611,612],{"file":203,"line":596,"context":597},172,"$wpdb->query() with variable interpolation",{"file":203,"line":599,"context":597},184,{"file":343,"line":601,"context":602},325,"$wpdb->get_var() with variable interpolation",{"file":351,"line":581,"context":602},{"file":351,"line":152,"context":605},"$wpdb->get_results() with variable interpolation",{"file":362,"line":438,"context":602},{"file":362,"line":471,"context":605},{"file":370,"line":609,"context":605},69,{"file":431,"line":248,"context":597},{"file":449,"line":12,"context":605},{"file":517,"line":248,"context":602},{"escaped":601,"rawEcho":371,"locations":614},[615,619,620,621,623,625,627,629,631,633,635,637,639,641,642,643,644,646,647,649,651,653,655,656,658,660,662,664,666,668,670,671,673,675,677,679,681,683,685,687,689,690,691,692,693,694,696,697,698,700,701,703,704,705,706,707,709],{"file":616,"line":617,"context":618},"includes\\admin\\settings_page.php",202,"raw output",{"file":616,"line":502,"context":618},{"file":616,"line":294,"context":618},{"file":616,"line":622,"context":618},934,{"file":247,"line":624,"context":618},120,{"file":263,"line":626,"context":618},59,{"file":275,"line":628,"context":618},163,{"file":275,"line":630,"context":618},205,{"file":300,"line":632,"context":618},138,{"file":300,"line":634,"context":618},143,{"file":300,"line":636,"context":618},145,{"file":312,"line":638,"context":618},270,{"file":312,"line":640,"context":618},318,{"file":343,"line":461,"context":618},{"file":343,"line":526,"context":618},{"file":343,"line":322,"context":618},{"file":343,"line":645,"context":618},336,{"file":343,"line":411,"context":618},{"file":343,"line":648,"context":618},379,{"file":357,"line":650,"context":618},79,{"file":381,"line":652,"context":618},87,{"file":381,"line":654,"context":618},146,{"file":381,"line":654,"context":618},{"file":381,"line":657,"context":618},262,{"file":381,"line":659,"context":618},298,{"file":381,"line":661,"context":618},301,{"file":381,"line":663,"context":618},303,{"file":381,"line":665,"context":618},309,{"file":381,"line":667,"context":618},317,{"file":468,"line":669,"context":618},14,{"file":482,"line":654,"context":618},{"file":482,"line":672,"context":618},353,{"file":674,"line":26,"context":618},"includes\\modules\\payments\\redirect_stripe.php",{"file":674,"line":676,"context":618},103,{"file":674,"line":678,"context":618},111,{"file":674,"line":680,"context":618},149,{"file":674,"line":682,"context":618},175,{"file":674,"line":684,"context":618},207,{"file":686,"line":223,"context":618},"includes\\modules\\payments\\settings_page.php",{"file":686,"line":688,"context":618},26,{"file":686,"line":442,"context":618},{"file":686,"line":174,"context":618},{"file":686,"line":165,"context":618},{"file":686,"line":271,"context":618},{"file":686,"line":132,"context":618},{"file":686,"line":695,"context":618},142,{"file":686,"line":636,"context":618},{"file":686,"line":374,"context":618},{"file":686,"line":699,"context":618},166,{"file":686,"line":450,"context":618},{"file":686,"line":702,"context":618},180,{"file":686,"line":291,"context":618},{"file":496,"line":152,"context":618},{"file":505,"line":132,"context":618},{"file":511,"line":363,"context":618},{"file":522,"line":708,"context":618},259,{"file":573,"line":676,"context":618},[],[712,728,746,759,777,785,794,802,811,822,830,838,846,854,862,870,881,889,897,905],{"entryPoint":713,"graph":714,"unsanitizedCount":48,"severity":41},"cf7rl_admin_after_additional_settings (includes\\admin\\tabs_page.php:26)",{"nodes":715,"edges":726},[716,721],{"id":717,"type":718,"label":719,"file":247,"line":720},"n0","source","$_GET",28,{"id":722,"type":723,"label":724,"file":247,"line":624,"wp_function":725},"n1","sink","echo() [XSS]","echo",[727],{"from":717,"to":722,"sanitized":50},{"entryPoint":729,"graph":730,"unsanitizedCount":48,"severity":41},"cf7rl_db_process_admin_actions (includes\\modules\\database_submissions\\admin_page.php:185)",{"nodes":731,"edges":743},[732,735,738],{"id":717,"type":718,"label":733,"file":343,"line":734},"$_GET['form_id']",236,{"id":722,"type":736,"label":737,"file":343,"line":734},"transform","→ cf7rl_db_export_csv()",{"id":739,"type":723,"label":740,"file":351,"line":741,"wp_function":742},"n2","header() [Header Injection]",230,"header",[744,745],{"from":717,"to":722,"sanitized":50},{"from":722,"to":739,"sanitized":50},{"entryPoint":747,"graph":748,"unsanitizedCount":48,"severity":41},"cf7rl_db_admin_page (includes\\modules\\database_submissions\\admin_page.php:256)",{"nodes":749,"edges":756},[750,752,754],{"id":717,"type":718,"label":733,"file":343,"line":751},268,{"id":722,"type":736,"label":753,"file":343,"line":751},"→ cf7rl_db_display_submissions()",{"id":739,"type":723,"label":724,"file":343,"line":755,"wp_function":725},372,[757,758],{"from":717,"to":722,"sanitized":50},{"from":722,"to":739,"sanitized":50},{"entryPoint":760,"graph":761,"unsanitizedCount":153,"severity":41},"\u003Cadmin_page> (includes\\modules\\database_submissions\\admin_page.php:0)",{"nodes":762,"edges":772},[763,764,765,766,768,770],{"id":717,"type":718,"label":733,"file":343,"line":734},{"id":722,"type":736,"label":737,"file":343,"line":734},{"id":739,"type":723,"label":740,"file":351,"line":741,"wp_function":742},{"id":767,"type":718,"label":733,"file":343,"line":751},"n3",{"id":769,"type":736,"label":753,"file":343,"line":751},"n4",{"id":771,"type":723,"label":724,"file":343,"line":755,"wp_function":725},"n5",[773,774,775,776],{"from":717,"to":722,"sanitized":50},{"from":722,"to":739,"sanitized":50},{"from":767,"to":769,"sanitized":50},{"from":769,"to":771,"sanitized":50},{"entryPoint":778,"graph":779,"unsanitizedCount":48,"severity":41},"cf7rl_material_theme_admin_settings (includes\\modules\\material_theme\\admin_functions.php:24)",{"nodes":780,"edges":783},[781,782],{"id":717,"type":718,"label":719,"file":357,"line":228},{"id":722,"type":723,"label":724,"file":357,"line":650,"wp_function":725},[784],{"from":717,"to":722,"sanitized":50},{"entryPoint":786,"graph":787,"unsanitizedCount":48,"severity":41},"cf7rl_custom_edit_payments_columns_data (includes\\modules\\payments\\cpt.php:295)",{"nodes":788,"edges":792},[789,791],{"id":717,"type":718,"label":719,"file":381,"line":790},316,{"id":722,"type":723,"label":724,"file":381,"line":667,"wp_function":725},[793],{"from":717,"to":722,"sanitized":50},{"entryPoint":795,"graph":796,"unsanitizedCount":48,"severity":41},"cf7rl_payment_admin_after_additional_settings (includes\\modules\\payments\\tabs_page.php:24)",{"nodes":797,"edges":800},[798,799],{"id":717,"type":718,"label":719,"file":505,"line":688},{"id":722,"type":723,"label":724,"file":505,"line":132,"wp_function":725},[801],{"from":717,"to":722,"sanitized":50},{"entryPoint":803,"graph":804,"unsanitizedCount":48,"severity":41},"cf7rl_recaptcha_admin_settings (includes\\modules\\recaptcha\\admin_functions.php:23)",{"nodes":805,"edges":809},[806,808],{"id":717,"type":718,"label":719,"file":511,"line":807},24,{"id":722,"type":723,"label":724,"file":511,"line":363,"wp_function":725},[810],{"from":717,"to":722,"sanitized":50},{"entryPoint":812,"graph":813,"unsanitizedCount":28,"severity":821},"cf7rl_admin_table (includes\\admin\\settings_page.php:7)",{"nodes":814,"edges":819},[815,817],{"id":717,"type":718,"label":816,"file":616,"line":599},"$_POST (x3)",{"id":722,"type":723,"label":724,"file":616,"line":818,"wp_function":725},209,[820],{"from":717,"to":722,"sanitized":538},"low",{"entryPoint":823,"graph":824,"unsanitizedCount":28,"severity":821},"\u003Csettings_page> (includes\\admin\\settings_page.php:0)",{"nodes":825,"edges":828},[826,827],{"id":717,"type":718,"label":816,"file":616,"line":599},{"id":722,"type":723,"label":724,"file":616,"line":818,"wp_function":725},[829],{"from":717,"to":722,"sanitized":538},{"entryPoint":831,"graph":832,"unsanitizedCount":48,"severity":821},"\u003Ctabs_page> (includes\\admin\\tabs_page.php:0)",{"nodes":833,"edges":836},[834,835],{"id":717,"type":718,"label":719,"file":247,"line":720},{"id":722,"type":723,"label":724,"file":247,"line":624,"wp_function":725},[837],{"from":717,"to":722,"sanitized":50},{"entryPoint":839,"graph":840,"unsanitizedCount":28,"severity":821},"cf7rl_booking_admin_settings (includes\\modules\\bookings\\booking_admin_tab.php:27)",{"nodes":841,"edges":844},[842,843],{"id":717,"type":718,"label":719,"file":300,"line":720},{"id":722,"type":723,"label":724,"file":300,"line":596,"wp_function":725},[845],{"from":717,"to":722,"sanitized":538},{"entryPoint":847,"graph":848,"unsanitizedCount":28,"severity":821},"\u003Cbooking_admin_tab> (includes\\modules\\bookings\\booking_admin_tab.php:0)",{"nodes":849,"edges":852},[850,851],{"id":717,"type":718,"label":719,"file":300,"line":720},{"id":722,"type":723,"label":724,"file":300,"line":596,"wp_function":725},[853],{"from":717,"to":722,"sanitized":538},{"entryPoint":855,"graph":856,"unsanitizedCount":48,"severity":821},"\u003Cadmin_functions> (includes\\modules\\material_theme\\admin_functions.php:0)",{"nodes":857,"edges":860},[858,859],{"id":717,"type":718,"label":719,"file":357,"line":228},{"id":722,"type":723,"label":724,"file":357,"line":650,"wp_function":725},[861],{"from":717,"to":722,"sanitized":50},{"entryPoint":863,"graph":864,"unsanitizedCount":28,"severity":821},"\u003Ccpt> (includes\\modules\\payments\\cpt.php:0)",{"nodes":865,"edges":868},[866,867],{"id":717,"type":718,"label":719,"file":381,"line":790},{"id":722,"type":723,"label":724,"file":381,"line":667,"wp_function":725},[869],{"from":717,"to":722,"sanitized":538},{"entryPoint":871,"graph":872,"unsanitizedCount":28,"severity":821},"cf7rl_free_ppcp_order_finalize (includes\\modules\\payments\\ppcp_frontend.php:65)",{"nodes":873,"edges":879},[874,876],{"id":717,"type":718,"label":719,"file":474,"line":875},73,{"id":722,"type":723,"label":877,"file":474,"line":366,"wp_function":878},"get_var() [SQLi]","get_var",[880],{"from":717,"to":722,"sanitized":538},{"entryPoint":882,"graph":883,"unsanitizedCount":28,"severity":821},"\u003Cppcp_frontend> (includes\\modules\\payments\\ppcp_frontend.php:0)",{"nodes":884,"edges":887},[885,886],{"id":717,"type":718,"label":719,"file":474,"line":875},{"id":722,"type":723,"label":877,"file":474,"line":366,"wp_function":878},[888],{"from":717,"to":722,"sanitized":538},{"entryPoint":890,"graph":891,"unsanitizedCount":48,"severity":821},"\u003Ctabs_page> (includes\\modules\\payments\\tabs_page.php:0)",{"nodes":892,"edges":895},[893,894],{"id":717,"type":718,"label":719,"file":505,"line":688},{"id":722,"type":723,"label":724,"file":505,"line":132,"wp_function":725},[896],{"from":717,"to":722,"sanitized":50},{"entryPoint":898,"graph":899,"unsanitizedCount":48,"severity":821},"\u003Cadmin_functions> (includes\\modules\\recaptcha\\admin_functions.php:0)",{"nodes":900,"edges":903},[901,902],{"id":717,"type":718,"label":719,"file":511,"line":807},{"id":722,"type":723,"label":724,"file":511,"line":363,"wp_function":725},[904],{"from":717,"to":722,"sanitized":50},{"entryPoint":906,"graph":907,"unsanitizedCount":153,"severity":920},"\u003Cdatabase_functions> (includes\\modules\\database_submissions\\database_functions.php:0)",{"nodes":908,"edges":917},[909,911,915,916],{"id":717,"type":718,"label":719,"file":351,"line":910},181,{"id":722,"type":723,"label":912,"file":351,"line":913,"wp_function":914},"get_results() [SQLi]",185,"get_results",{"id":739,"type":718,"label":719,"file":351,"line":910},{"id":767,"type":723,"label":740,"file":351,"line":741,"wp_function":742},[918,919],{"from":717,"to":722,"sanitized":50},{"from":739,"to":767,"sanitized":50},"high",{"summary":922,"deductions":923},"The \"cf7-redirect-thank-you-page\" plugin version 1.2.1 presents a mixed security posture.  While it demonstrates good practices like a high percentage of properly escaped output and the use of prepared statements for most SQL queries, there are significant concerns regarding its attack surface and input handling.  The presence of two REST API routes without permission callbacks is a critical oversight, creating an easily exploitable entry point.  Furthermore, the taint analysis revealing one high-severity flow with unsanitized paths indicates a potential for vulnerabilities if user input is not handled with extreme care. The plugin's history of three medium-severity CVEs, specifically Cross-Site Scripting and Cross-Site Request Forgery, suggests a pattern of input validation weaknesses. Although no unpatched vulnerabilities are currently listed, this history combined with the identified code signals warrants caution.  The plugin's strengths lie in its internal code hygiene for SQL and output, but its external-facing interfaces and potential for unsanitized flows are notable weaknesses.",[924,926,928,930],{"reason":925,"points":13},"REST API routes without permission callbacks",{"reason":927,"points":81},"High severity taint flow with unsanitized paths",{"reason":929,"points":589},"Three medium severity CVEs in vulnerability history",{"reason":931,"points":111},"13 flows with unsanitized paths","2026-03-16T17:55:36.980Z",{"wat":934,"direct":942},{"assetPaths":935,"generatorPatterns":937,"scriptPaths":938,"versionParams":941},[936],"\u002Fwp-content\u002Fplugins\u002Fcf7-redirect-thank-you-page\u002Fincludes\u002Fenqueue.php",[],[936,939,940],"\u002Fwp-content\u002Fplugins\u002Fcf7-redirect-thank-you-page\u002Fincludes\u002Fmodules\u002Frecaptcha\u002Fenqueue.php","\u002Fwp-content\u002Fplugins\u002Fcf7-redirect-thank-you-page\u002Fincludes\u002Fmodules\u002Fcountry_phone\u002Fenqueue.php",[],{"cssClasses":943,"htmlComments":944,"htmlAttributes":945,"restEndpoints":948,"jsGlobals":949,"shortcodeOutput":950},[],[],[946,947],"cf7rl_redirect_enable","_cf7rl_redirect_enable",[],[],[],{"error":538,"url":952,"statusCode":953,"statusMessage":954,"message":954},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fcf7-redirect-thank-you-page\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":264,"versions":956},[957,962,969,976,983,989,996,1005,1014,1022,1032,1042,1052],{"version":6,"download_url":25,"svn_tag_url":958,"released_at":38,"has_diff":50,"diff_files_changed":959,"diff_lines":38,"trac_diff_url":960,"vulnerabilities":961,"is_current":538},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.2&new_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.2.1",[],{"version":963,"download_url":964,"svn_tag_url":965,"released_at":38,"has_diff":50,"diff_files_changed":966,"diff_lines":38,"trac_diff_url":967,"vulnerabilities":968,"is_current":50},"1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.1&new_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.2",[],{"version":970,"download_url":971,"svn_tag_url":972,"released_at":38,"has_diff":50,"diff_files_changed":973,"diff_lines":38,"trac_diff_url":974,"vulnerabilities":975,"is_current":50},"1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.9&new_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.1",[],{"version":977,"download_url":978,"svn_tag_url":979,"released_at":38,"has_diff":50,"diff_files_changed":980,"diff_lines":38,"trac_diff_url":981,"vulnerabilities":982,"is_current":50},"1.0.9","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.0.9.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.0.9\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.8&new_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.9",[],{"version":40,"download_url":984,"svn_tag_url":985,"released_at":38,"has_diff":50,"diff_files_changed":986,"diff_lines":38,"trac_diff_url":987,"vulnerabilities":988,"is_current":50},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.0.8.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.0.8\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.7&new_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.8",[],{"version":57,"download_url":990,"svn_tag_url":991,"released_at":38,"has_diff":50,"diff_files_changed":992,"diff_lines":38,"trac_diff_url":993,"vulnerabilities":994,"is_current":50},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.0.7.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.0.7\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.6&new_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.7",[995],{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"version":997,"download_url":998,"svn_tag_url":999,"released_at":38,"has_diff":50,"diff_files_changed":1000,"diff_lines":38,"trac_diff_url":1001,"vulnerabilities":1002,"is_current":50},"1.0.6","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.0.6.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.0.6\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.5&new_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.6",[1003,1004],{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"id":52,"url_slug":53,"title":54,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":57},{"version":1006,"download_url":1007,"svn_tag_url":1008,"released_at":38,"has_diff":50,"diff_files_changed":1009,"diff_lines":38,"trac_diff_url":1010,"vulnerabilities":1011,"is_current":50},"1.0.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.0.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.0.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.4&new_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.5",[1012,1013],{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"id":52,"url_slug":53,"title":54,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":57},{"version":69,"download_url":1015,"svn_tag_url":1016,"released_at":38,"has_diff":50,"diff_files_changed":1017,"diff_lines":38,"trac_diff_url":1018,"vulnerabilities":1019,"is_current":50},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.0.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.0.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.3&new_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.4",[1020,1021],{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"id":52,"url_slug":53,"title":54,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":57},{"version":1023,"download_url":1024,"svn_tag_url":1025,"released_at":38,"has_diff":50,"diff_files_changed":1026,"diff_lines":38,"trac_diff_url":1027,"vulnerabilities":1028,"is_current":50},"1.0.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.0.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.0.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.2&new_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.3",[1029,1030,1031],{"id":64,"url_slug":65,"title":66,"severity":41,"cvss_score":70,"vuln_type":72,"patched_in_version":69},{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"id":52,"url_slug":53,"title":54,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":57},{"version":1033,"download_url":1034,"svn_tag_url":1035,"released_at":38,"has_diff":50,"diff_files_changed":1036,"diff_lines":38,"trac_diff_url":1037,"vulnerabilities":1038,"is_current":50},"1.0.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.0.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.0.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.1&new_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.2",[1039,1040,1041],{"id":64,"url_slug":65,"title":66,"severity":41,"cvss_score":70,"vuln_type":72,"patched_in_version":69},{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"id":52,"url_slug":53,"title":54,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":57},{"version":1043,"download_url":1044,"svn_tag_url":1045,"released_at":38,"has_diff":50,"diff_files_changed":1046,"diff_lines":38,"trac_diff_url":1047,"vulnerabilities":1048,"is_current":50},"1.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0&new_path=%2Fcf7-redirect-thank-you-page%2Ftags%2F1.0.1",[1049,1050,1051],{"id":64,"url_slug":65,"title":66,"severity":41,"cvss_score":70,"vuln_type":72,"patched_in_version":69},{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"id":52,"url_slug":53,"title":54,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":57},{"version":1053,"download_url":1054,"svn_tag_url":1055,"released_at":38,"has_diff":50,"diff_files_changed":1056,"diff_lines":38,"trac_diff_url":38,"vulnerabilities":1057,"is_current":50},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirect-thank-you-page.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirect-thank-you-page\u002Ftags\u002F1.0\u002F",[],[1058,1059,1060],{"id":64,"url_slug":65,"title":66,"severity":41,"cvss_score":70,"vuln_type":72,"patched_in_version":69},{"id":34,"url_slug":35,"title":36,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":40},{"id":52,"url_slug":53,"title":54,"severity":41,"cvss_score":42,"vuln_type":44,"patched_in_version":57}]