[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fW_TWrHEIhxG1Octlh4eW7ubnS_zhauVLa-fqdDcNODI":3,"$f1ooXK__Z3rxZP3HFEUvuClxBp03_yEWEHdU3mg-9qFM":133,"$fAFXBpPpCPBd4erVC-PSr4JLpKgp7Z0KKrX8Eq4jAGNQ":138},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":22,"download_link":23,"security_score":13,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":26,"discovery_status":27,"vulnerabilities":28,"developer":29,"crawl_stats":25,"alternatives":34,"analysis":35,"fingerprints":115},"cf7-redirection","Successful Redirection for Contact Form","2.0","jayasree2020","https:\u002F\u002Fprofiles.wordpress.org\u002Fjayasree2020\u002F","\u003Cp>The Additional Setting “on_sent_ok” is used to assign a JavaScript code that will be executed when a form submission completes and mail has been sent successfully. It is often used for the purpose of tracking form submissions with web analytics services or redirecting to another page after a form submission.\u003C\u002Fp>\n\u003Cp>The “on_sent_ok” and its sibling setting “on_submit” are deprecated and scheduled to be abolished by the end of 2017. It’s not that using those settings is unsafe, but it’s possible that enabling them will increase risk in case there are vulnerabilities in this plugin or in other components of your site. It’s time to replace them with a safer alternative.\u003C\u002Fp>\n\u003Cp>Update: on_sent_ok and on_submit have been officially removed from Contact Form 7 5.0.\u003C\u002Fp>\n\u003Cp>A straightforward add-on plugin for Contactus Form  adds the option to redirect to any page you choose after mail sent successfully, with DOM Events and without AJAX being disabled.\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>Simply go to your form settings, choose the “Redirect Settings” tab and set the page you want to be redirected to.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Redirect to any URL\u003C\u002Fli>\n\u003Cli>Open page in a new tab\u003C\u002Fli>\n\u003Cli>Run JavaScript after form submission (great for conversion management)\u003C\u002Fli>\n\u003Cli>Pass fields from the form as URL query parameters\u003C\u002Fli>\n\u003Cli>More Information Visit our Official Website.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>Note: some features are availible only in the Pro version. Which means you need Redirection for Contact Forms\u003Cbr \u002F>\n  Pro to unlock those features.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","A simple add-on for  Forms that adds a redirect option after form sent successfully.",10000,59052,100,4,"2025-06-18T10:14:00.000Z","6.8.5","4.7.0","",[20,21],"form-success-redirection-thank-you-page","successful-redirection-for-contact-form-7","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcf7-redirection\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirection.zip",0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":11,"avg_security_score":13,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},1,30,94,"2026-05-19T21:39:30.464Z",[],{"attackSurface":36,"codeSignals":83,"taintFlows":105,"riskAssessment":106,"analyzedAt":114},{"hooks":37,"ajaxHandlers":79,"restRoutes":80,"shortcodes":81,"cronEvents":82,"entryPointCount":24,"unprotectedCount":24},[38,44,48,52,56,60,64,68,72,76],{"type":39,"name":40,"callback":41,"file":42,"line":43},"action","plugins_loaded","load_textdomain","wpcf7-redirect.php",56,{"type":39,"name":45,"callback":46,"file":42,"line":47},"admin_enqueue_scripts","enqueue_backend",57,{"type":39,"name":49,"callback":50,"file":42,"line":51},"wp_enqueue_scripts","enqueue_frontend",58,{"type":39,"name":53,"callback":54,"file":42,"line":55},"wpcf7_editor_panels","add_panel",59,{"type":39,"name":57,"callback":58,"file":42,"line":59},"wpcf7_after_save","store_meta",60,{"type":39,"name":61,"callback":62,"file":42,"line":63},"wpcf7_after_create","duplicate_form_support",61,{"type":39,"name":65,"callback":66,"file":42,"line":67},"wpcf7_submit","non_ajax_redirection",62,{"type":39,"name":69,"callback":70,"file":42,"line":71},"admin_init","dismiss_ads",63,{"type":39,"name":73,"callback":74,"file":42,"line":75},"admin_notices","dependencies_notice",64,{"type":39,"name":73,"callback":77,"file":42,"line":78},"pro_notice",65,[],[],[],[],{"dangerousFunctions":84,"sqlUsage":85,"outputEscaping":87,"fileOperations":24,"externalRequests":24,"nonceChecks":30,"capabilityChecks":24,"bundledLibraries":104},[],{"prepared":24,"raw":24,"locations":86},[],{"escaped":88,"rawEcho":89,"locations":90},3,6,[91,94,96,98,100,102],{"file":42,"line":92,"context":93},412,"raw output",{"file":42,"line":95,"context":93},413,{"file":42,"line":97,"context":93},421,{"file":42,"line":99,"context":93},461,{"file":42,"line":101,"context":93},469,{"file":42,"line":103,"context":93},483,[],[],{"summary":107,"deductions":108},"The 'cf7-redirection' plugin v2.0 exhibits a strong security posture based on the provided static analysis. It demonstrates an absence of known vulnerabilities and common attack vectors like AJAX handlers, REST API routes, shortcodes, or cron events that are accessible without authentication. The code also shows good practices in SQL query handling, exclusively using prepared statements, and a complete lack of file operations or external HTTP requests, minimizing potential for injection or SSRF attacks. The presence of a nonce check and the absence of critical taint flows further contribute to its secure design.\n\nHowever, there are areas for improvement. The primary concern is the low percentage of properly escaped output. With 9 total outputs and only 33% properly escaped, there is a significant risk of Cross-Site Scripting (XSS) vulnerabilities. This means user-supplied data, if not handled carefully by the application itself, could be injected into the output and executed by a user's browser. Additionally, the complete absence of capability checks on any entry points, while mitigated by the lack of accessible entry points, still represents a potential oversight if new entry points were to be introduced in future versions without proper authorization checks. The vulnerability history being entirely clear is a positive indicator, suggesting the developers have a history of addressing issues or have not had them in the past. Overall, while the plugin is currently very secure due to its limited attack surface and good query handling, the unescaped output presents a notable risk that requires attention.",[109,112],{"reason":110,"points":111},"Low percentage of properly escaped output",8,{"reason":113,"points":88},"No capability checks on entry points","2026-03-16T17:40:45.581Z",{"wat":116,"direct":124},{"assetPaths":117,"generatorPatterns":121,"scriptPaths":122,"versionParams":123},[118,119,120],"\u002Fwp-content\u002Fplugins\u002Fcf7-redirection\u002Fadmin\u002Fwpcf7-redirect-admin-style.css","\u002Fwp-content\u002Fplugins\u002Fcf7-redirection\u002Fadmin\u002Fwpcf7-redirect-admin-script.js","\u002Fwp-content\u002Fplugins\u002Fcf7-redirection\u002Fjs\u002Fwpcf7-redirect-script.js",[],[119,120],[],{"cssClasses":125,"htmlComments":126,"htmlAttributes":127,"restEndpoints":129,"jsGlobals":130,"shortcodeOutput":132},[],[],[128],"wpcf7-redirect",[],[131],"wpcf7_redirect_forms",[],{"error":134,"url":135,"statusCode":136,"statusMessage":137,"message":137},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fcf7-redirection\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":30,"versions":139},[140],{"version":141,"download_url":142,"svn_tag_url":143,"released_at":25,"has_diff":144,"diff_files_changed":145,"diff_lines":25,"trac_diff_url":25,"vulnerabilities":146,"is_current":144},"0.0.9","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-redirection.0.0.9.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fcf7-redirection\u002Ftags\u002F0.0.9\u002F",false,[],[]]