[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f9kIPwEY-5KDUnskIlSUizgCM5aIkQp8KTS3eYRIn9rM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":22,"download_link":23,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":35,"analysis":36,"fingerprints":296},"cf7-save-into-database","CF7NXT Lite – Contact Form 7 Save Into Database Plugin By Witoni Software","1.0","Rakessh","https:\u002F\u002Fprofiles.wordpress.org\u002Frakesh007\u002F","\u003Cp>THE MOST ADVANCED CONTACT FORM 7 SAVE TO DATABASE PLUGIN.\u003C\u002Fp>\n\u003Cp>“CF7NXT Lite” Plugin has designed for saving contact form 7 plugin data into wordpress system so WordPress Users access all data with attachments download in backend with some additional features to manage more flexibly.\u003C\u002Fp>\n\u003Ch3>CF7LITE Lite – Awesome Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Save All Contact Form 7 Fields Data\u003C\u002Fli>\n\u003Cli>Save Selected Fields Only\u003C\u002Fli>\n\u003Cli>Label Your Enquiries Like Clients, Sales, Support… etc\u003C\u002Fli>\n\u003Cli>Download Attachments Directly From Panel\u003C\u002Fli>\n\u003Cli>Export All Enquires in CSV Format\u003C\u002Fli>\n\u003Cli>Sort & Export Selected Enquires\u003C\u002Fli>\n\u003Cli>Sort Enquires Via Labels\u003C\u002Fli>\n\u003Cli>Sort Enquires Via Name & Email\u003C\u002Fli>\n\u003Cli>Sort Enquires Via Date\u003C\u002Fli>\n\u003Cli>Starred Important Enquires\u003C\u002Fli>\n\u003Cli>Notification of New Enquiry & More\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.witoni.com\u002Fcf7nxt-pro-save-to-datebase-documentation\u002F\" rel=\"nofollow ugc\">Documentation Available Here\u003C\u002Fa>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Ch3>CF7NXT Pro – Premium Features\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.witoni.com\u002Fproduct\u002Fcf7nxt-pro-contact-form-7-save-to-database\u002F\" rel=\"nofollow ugc\">Get User Details\u003C\u002Fa> – Save All User Details Like Ip Address, City, State, Country, TimeZone, ZipCode… Etc \u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.witoni.com\u002Fproduct\u002Fcf7nxt-pro-contact-form-7-save-to-database\u002F\" rel=\"nofollow ugc\">City Export\u003C\u002Fa> – Sort Enquiries On Basis of Different Cities & Export in CSV & XLS Format\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.witoni.com\u002Fproduct\u002Fcf7nxt-pro-contact-form-7-save-to-database\u002F\" rel=\"nofollow ugc\">Country Export\u003C\u002Fa> – Sort Enquiries On Basis of Countries & Export in CSV & XLS Format\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.witoni.com\u002Fproduct\u002Fcf7nxt-pro-contact-form-7-save-to-database\u002F\" rel=\"nofollow ugc\">Show User Enquiries \u003C\u002Fa> – Display Logged-in users submitted enquiries in frontend using shortcode\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cblockquote>\n\u003Ch3>CF7NXT Pro Plugin Demo\u003C\u002Fh3>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"560\" height=\"315\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FDRkaPdj1HjE?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>HAVING QUESTIONS ?\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.witoni.com\u002Fproduct\u002Fcf7nxt-pro-contact-form-7-save-to-database\u002F\" rel=\"nofollow ugc\">We’re Online (LIVE CHAT) Available\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.witoni.com\u002Fproduct\u002Fcf7nxt-pro-contact-form-7-save-to-database\u002F\" rel=\"nofollow ugc\">START 7-DAY FREE TRIAL NOW\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","THE MOST ADVANCED CONTACT FORM 7 SAVE TO DATABASE PLUGIN USED FOR SAVING CF7 ENQUIRES OR DATA INTO WORDPRESS DASHBOARD SYSTEM FOR FURTHER PROCESSES.",0,1100,100,1,"2018-12-04T08:20:00.000Z","4.9.29","4.8","",[20,21],"cf7-save","contact-form-7-save-database","http:\u002F\u002Fwitoni.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-save-into-database.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":24,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"rakesh007",3,20,30,84,"2026-04-04T19:05:37.809Z",[],{"attackSurface":37,"codeSignals":124,"taintFlows":230,"riskAssessment":275,"analyzedAt":295},{"hooks":38,"ajaxHandlers":112,"restRoutes":117,"shortcodes":118,"cronEvents":122,"entryPointCount":123,"unprotectedCount":14},[39,45,48,50,53,55,59,62,65,68,71,73,76,79,82,85,87,90,92,95,98,101,104,107,109],{"type":40,"name":41,"callback":42,"file":43,"line":44},"action","plugins_loaded","anonymous","includes\\class-cf7nxt.php",142,{"type":40,"name":46,"callback":42,"file":43,"line":47},"admin_enqueue_scripts",157,{"type":40,"name":46,"callback":42,"file":43,"line":49},158,{"type":40,"name":51,"callback":42,"file":43,"line":52},"init",160,{"type":40,"name":51,"callback":42,"file":43,"line":54},161,{"type":56,"name":57,"callback":42,"file":43,"line":58},"filter","manage_cf7nxt_panel_posts_columns",162,{"type":56,"name":60,"callback":42,"file":43,"line":61},"post_row_actions",163,{"type":56,"name":63,"callback":42,"file":43,"line":64},"page_row_actions",164,{"type":40,"name":66,"callback":42,"file":43,"line":67},"admin_menu",165,{"type":40,"name":69,"callback":42,"file":43,"line":70},"admin_head",166,{"type":56,"name":57,"callback":42,"file":43,"line":72},167,{"type":40,"name":74,"callback":42,"file":43,"line":75},"manage_cf7nxt_panel_posts_custom_column",168,{"type":56,"name":77,"callback":42,"file":43,"line":78},"manage_edit-cf7nxt_panel_sortable_columns",169,{"type":40,"name":80,"callback":42,"file":43,"line":81},"add_meta_boxes",170,{"type":40,"name":83,"callback":42,"file":43,"line":84},"restrict_manage_posts",171,{"type":40,"name":51,"callback":42,"file":43,"line":86},172,{"type":40,"name":88,"callback":42,"file":43,"line":89},"admin_print_scripts-post.php",173,{"type":40,"name":83,"callback":42,"file":43,"line":91},176,{"type":40,"name":93,"callback":42,"file":43,"line":94},"cf7nxt_forms_edit_form_fields",177,{"type":40,"name":96,"callback":42,"file":43,"line":97},"edited_cf7nxt_forms",178,{"type":56,"name":99,"callback":42,"file":43,"line":100},"wpcf7_editor_panels",179,{"type":56,"name":102,"callback":42,"file":43,"line":103},"wpcf7_after_save",180,{"type":40,"name":105,"callback":42,"file":43,"line":106},"wp_enqueue_scripts",196,{"type":40,"name":105,"callback":42,"file":43,"line":108},197,{"type":40,"name":110,"callback":42,"file":43,"line":111},"wpcf7_before_send_mail",199,[113],{"action":114,"nopriv":115,"callback":42,"hasNonce":115,"hasCapCheck":115,"file":43,"line":116},"starred_enquiry",false,175,[],[119],{"tag":120,"callback":42,"file":43,"line":121},"hey",201,[],2,{"dangerousFunctions":125,"sqlUsage":145,"outputEscaping":176,"fileOperations":30,"externalRequests":11,"nonceChecks":14,"capabilityChecks":11,"bundledLibraries":229},[126,131,133,136,139,141],{"fn":127,"file":128,"line":129,"context":130},"unserialize","admin\\partials\\cf7nxt-panel.php",97,"$first_row  = isset($results[0]) ? unserialize( $results[0]->form_value ): 0 ;",{"fn":127,"file":128,"line":121,"context":132},"$form_value = unserialize( $result->form_value );",{"fn":127,"file":128,"line":134,"context":135},272,"$result_values = unserialize($result_value);",{"fn":127,"file":128,"line":137,"context":138},300,"$result_values = unserialize( $result_value );",{"fn":127,"file":128,"line":140,"context":138},316,{"fn":127,"file":142,"line":143,"context":144},"public\\class-cf7nxt-public.php",150,"$form_values   = unserialize( $form_value  );",{"prepared":11,"raw":146,"locations":147},12,[148,152,154,156,158,161,163,165,167,169,172,174],{"file":149,"line":150,"context":151},"admin\\class-cf7nxt-admin.php",514,"$wpdb->get_var() with variable interpolation",{"file":149,"line":153,"context":151},677,{"file":128,"line":155,"context":151},69,{"file":128,"line":157,"context":151},72,{"file":128,"line":159,"context":160},95,"$wpdb->get_results() with variable interpolation",{"file":128,"line":162,"context":160},187,{"file":128,"line":164,"context":160},193,{"file":128,"line":166,"context":160},270,{"file":128,"line":168,"context":160},298,{"file":128,"line":170,"context":171},303,"$wpdb->query() with variable interpolation",{"file":128,"line":173,"context":160},314,{"file":128,"line":175,"context":171},319,{"escaped":177,"rawEcho":178,"locations":179},10,24,[180,183,185,187,189,191,193,195,197,199,201,203,205,207,209,211,213,215,217,219,221,223,225,227],{"file":149,"line":181,"context":182},267,"raw output",{"file":149,"line":184,"context":182},268,{"file":149,"line":186,"context":182},460,{"file":149,"line":188,"context":182},465,{"file":149,"line":190,"context":182},526,{"file":149,"line":192,"context":182},530,{"file":149,"line":194,"context":182},543,{"file":149,"line":196,"context":182},547,{"file":149,"line":198,"context":182},573,{"file":149,"line":200,"context":182},589,{"file":149,"line":202,"context":182},604,{"file":149,"line":204,"context":182},606,{"file":149,"line":206,"context":182},610,{"file":149,"line":208,"context":182},612,{"file":149,"line":210,"context":182},640,{"file":149,"line":212,"context":182},682,{"file":149,"line":214,"context":182},840,{"file":128,"line":216,"context":182},49,{"file":128,"line":218,"context":182},404,{"file":128,"line":220,"context":182},405,{"file":128,"line":222,"context":182},406,{"file":128,"line":224,"context":182},411,{"file":128,"line":226,"context":182},419,{"file":142,"line":228,"context":182},294,[],[231,248,257,266],{"entryPoint":232,"graph":233,"unsanitizedCount":14,"severity":247},"sttarted_enquiry (admin\\class-cf7nxt-admin.php:622)",{"nodes":234,"edges":245},[235,240],{"id":236,"type":237,"label":238,"file":149,"line":239},"n0","source","$_POST",628,{"id":241,"type":242,"label":243,"file":149,"line":210,"wp_function":244},"n1","sink","echo() [XSS]","echo",[246],{"from":236,"to":241,"sanitized":115},"medium",{"entryPoint":249,"graph":250,"unsanitizedCount":14,"severity":247},"bulk_actions (admin\\partials\\cf7nxt-panel.php:380)",{"nodes":251,"edges":255},[252,254],{"id":236,"type":237,"label":253,"file":128,"line":226},"$_SERVER['REQUEST_URI']",{"id":241,"type":242,"label":243,"file":128,"line":226,"wp_function":244},[256],{"from":236,"to":241,"sanitized":115},{"entryPoint":258,"graph":259,"unsanitizedCount":14,"severity":265},"\u003Cclass-cf7nxt-admin> (admin\\class-cf7nxt-admin.php:0)",{"nodes":260,"edges":263},[261,262],{"id":236,"type":237,"label":238,"file":149,"line":239},{"id":241,"type":242,"label":243,"file":149,"line":210,"wp_function":244},[264],{"from":236,"to":241,"sanitized":115},"low",{"entryPoint":267,"graph":268,"unsanitizedCount":11,"severity":265},"\u003Ccf7nxt-panel> (admin\\partials\\cf7nxt-panel.php:0)",{"nodes":269,"edges":272},[270,271],{"id":236,"type":237,"label":253,"file":128,"line":226},{"id":241,"type":242,"label":243,"file":128,"line":226,"wp_function":244},[273],{"from":236,"to":241,"sanitized":274},true,{"summary":276,"deductions":277},"The \"cf7-save-into-database\" v1.0 plugin exhibits several concerning security practices, significantly outweighing its strengths.  A primary concern is the presence of an AJAX handler without any authentication checks, creating a direct entry point for potential attackers. Furthermore, the plugin's reliance on raw SQL queries with zero use of prepared statements is a major red flag, leaving it highly susceptible to SQL injection vulnerabilities.  The high number of unsanitized taint flows, although not classified as critical or high severity in this analysis, still indicates potential pathways for malicious data to be processed without proper validation. The limited output escaping (29%) also suggests potential for cross-site scripting (XSS) vulnerabilities.\n\nWhile the plugin has no recorded vulnerability history (CVEs), this should not be interpreted as a guarantee of security. The static analysis results reveal fundamental weaknesses in how the plugin handles user input and interacts with the database. The presence of dangerous functions like `unserialize` further exacerbates the risk, especially when combined with unsanitized input. The lack of capability checks on entry points is also a significant oversight. In conclusion, the plugin's current security posture is poor due to these critical vulnerabilities, and it should be treated with extreme caution until these issues are addressed.",[278,281,283,286,289,291,293],{"reason":279,"points":280},"AJAX handler without auth checks",8,{"reason":282,"points":177},"SQL queries with 0% prepared statements",{"reason":284,"points":285},"Low output escaping percentage",5,{"reason":287,"points":288},"Dangerous function: unserialize",6,{"reason":290,"points":288},"3 unsanitized taint flows",{"reason":292,"points":285},"No capability checks",{"reason":294,"points":30},"Only 1 nonce check for 2 entry points","2026-03-17T06:40:26.038Z",{"wat":297,"direct":306},{"assetPaths":298,"generatorPatterns":301,"scriptPaths":302,"versionParams":303},[299,300],"\u002Fwp-content\u002Fplugins\u002Fcf7-save-into-database\u002Fadmin\u002Fcss\u002Fplugin-name-admin.css","\u002Fwp-content\u002Fplugins\u002Fcf7-save-into-database\u002Fadmin\u002Fjs\u002Fplugin-name-admin.js",[],[300],[304,305],"\u002Fwp-content\u002Fplugins\u002Fcf7-save-into-database\u002Fadmin\u002Fcss\u002Fplugin-name-admin.css?ver=","\u002Fwp-content\u002Fplugins\u002Fcf7-save-into-database\u002Fadmin\u002Fjs\u002Fplugin-name-admin.js?ver=",{"cssClasses":307,"htmlComments":308,"htmlAttributes":311,"restEndpoints":316,"jsGlobals":317,"shortcodeOutput":318},[],[309,310],"\u003C!-- Enter Contact Form 7 Form ID -->","\u003C!-- Enter Contact Form 7 Form Subject -->",[312,313,314,315],"name=\"term_meta[cf7nxt_form_id]\"","id=\"term_meta[cf7nxt_form_id]\"","name=\"term_meta[cf7nxt_form_subject]\"","id=\"term_meta[cf7nxt_form_subject]\"",[],[],[]]