Does Codeandcore User Registration for CF7 have any unpatched vulnerabilities?

No. All known vulnerabilities in Codeandcore User Registration for CF7 have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Codeandcore User Registration for CF7 compatible with WordPress 6.8.5?

According to WordPress.org data, Codeandcore User Registration for CF7 1.1 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Codeandcore User Registration for CF7 compatible with PHP 7.0+?

Codeandcore User Registration for CF7 requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Codeandcore User Registration for CF7 updated?

Codeandcore User Registration for CF7 was last updated on Apr 17, 2025. Frequent updates are generally a positive security signal.

What is Codeandcore User Registration for CF7's security score?

Codeandcore User Registration for CF7 has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Codeandcore User Registration for CF7 Security & Risk Analysis

wordpress.org/plugins/codeandcore-user-registration-cf7

A plugin to handle user registration through Contact Form 7 submissions.

60 active installs v1.1 PHP 7.0+ WP 5.0+ Updated Apr 17, 2025

contact-form-registrationuser-registration

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Codeandcore User Registration for CF7 Safe to Use in 2026?

Generally Safe

Score 100/100

Codeandcore User Registration for CF7 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11mo ago

Risk Assessment

The "codeandcore-user-registration-cf7" plugin version 1.1 exhibits a strong security posture based on the provided static analysis. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events with unprotected entry points indicates a minimal attack surface, which is a significant positive. Furthermore, the code signals reveal no dangerous functions, no raw SQL queries, and no file operations, all of which are excellent security practices. The presence of nonce and capability checks, along with proper output escaping for 80% of outputs, further reinforces a commitment to secure coding. The taint analysis also shows no critical or high severity unsanitized flows, further bolstering confidence.

The vulnerability history is completely clean, with no known CVEs recorded for this plugin. This lack of past vulnerabilities, coupled with the current clean bill of health from static analysis, suggests a well-maintained and secure plugin. While 80% output escaping is good, there is a small area for improvement if the remaining 20% of outputs are deemed sensitive. However, without specific details on the nature of these unescaped outputs or the functionality that creates them, it's difficult to assign a significant risk.

In conclusion, this plugin appears to be very secure. The minimal attack surface, lack of dangerous code patterns, and absence of historical vulnerabilities are all highly positive indicators. The primary area for potential enhancement lies in ensuring all output is properly escaped, though the current level of escaping is respectable. Overall, the plugin presents a low-risk profile.

Key Concerns

20% of outputs are not properly escaped

Vulnerabilities

None known

Codeandcore User Registration for CF7 Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Codeandcore User Registration for CF7 Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

94 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

80% escaped117 total outputs

Data Flows

All sanitized

Data Flow Analysis

3 flows

cnc_cf7_user_role_tab_content (codeandcore-user-registration-cf7.php:117)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Codeandcore User Registration for CF7 Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 35

actionadmin_initcodeandcore-user-registration-cf7.php:22

actionadmin_noticescodeandcore-user-registration-cf7.php:32

actionwp_enqueue_scriptscodeandcore-user-registration-cf7.php:89

actionadmin_enqueue_scriptscodeandcore-user-registration-cf7.php:113

actionsave_postcodeandcore-user-registration-cf7.php:589

actionadmin_noticescodeandcore-user-registration-cf7.php:600

filterwpcf7_form_hidden_fieldscodeandcore-user-registration-cf7.php:609

actionwpcf7_before_send_mailcodeandcore-user-registration-cf7.php:613

filterwpcf7_ajax_json_echocodeandcore-user-registration-cf7.php:749

filterwpcf7_ajax_json_echocodeandcore-user-registration-cf7.php:797

filterwpcf7_ajax_json_echocodeandcore-user-registration-cf7.php:803

filterwpcf7_ajax_json_echocodeandcore-user-registration-cf7.php:810

filterwpcf7_ajax_json_echocodeandcore-user-registration-cf7.php:816

filterwpcf7_ajax_json_echocodeandcore-user-registration-cf7.php:825

filtervalidate_usernamecodeandcore-user-registration-cf7.php:853

filterwpcf7_editor_panelscodeandcore-user-registration-cf7.php:881

filterwpcf7_display_messagecodeandcore-user-registration-cf7.php:893

actionwpcf7_save_contact_formcodeandcore-user-registration-cf7.php:906

actionwpcf7_before_send_mailcodeandcore-user-registration-cf7.php:917

filterauthenticatecodeandcore-user-registration-cf7.php:940

filterauthenticatecodeandcore-user-registration-cf7.php:961

filtermanage_users_columnscodeandcore-user-registration-cf7.php:988

filtermanage_users_custom_columncodeandcore-user-registration-cf7.php:994

actionadmin_initcodeandcore-user-registration-cf7.php:1034

actionwp_insert_usercodeandcore-user-registration-cf7.php:1059

actionwpcf7_admin_initcodeandcore-user-registration-cf7.php:1307

actionwpcf7_contact_form_editorcodeandcore-user-registration-cf7.php:1312

actionwpcf7_admin_initcodeandcore-user-registration-cf7.php:1331

filterwpcf7_validate_passwordcodeandcore-user-registration-cf7.php:1357

filterwpcf7_validate_password*codeandcore-user-registration-cf7.php:1358

actioninitcodeandcore-user-registration-cf7.php:1362

actionwpcf7_initcodeandcore-user-registration-cf7.php:1474

actionwpcf7_mail_sentcodeandcore-user-registration-cf7.php:1505

filterwpcf7_contact_form_propertiescodeandcore-user-registration-cf7.php:1512

actionupdated_post_metacodeandcore-user-registration-cf7.php:1560

Maintenance & Trust

Codeandcore User Registration for CF7 Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedApr 17, 2025

PHP min version7.0

Downloads591

Community Trust

Rating0/100

Number of ratings0

Active installs60

Alternatives

Codeandcore User Registration for CF7 Alternatives

Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin

ultimate-member

Membership & community plugin with user profiles, registration & login, member directories, content restriction, user roles and much more.

200K 70 CVEs

Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress

wp-user-avatar

Setup paid membership, accept payment, sell subscription & digital product, paywall, create login & registration form, user profile & member directory

100K 41 CVEs

User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder

user-registration

Build membership sites with tiered plans, content restriction, drag-&-drop custom registration & login form builder, and built-in payment system.

60K 30 CVEs

User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor

profile-builder

Powerful user profile plugin to create front-end user registration forms, login & user profile forms. Includes user role editor & content restriction.

50K 33 CVEs

New User Approve

new-user-approve

WordPress user approval plugin to moderate registrations. Approve or deny real users and prevent fake signups to control who registers on site.

20K 9 CVEs

Developer Profile

Codeandcore User Registration for CF7 Developer Profile

Code and Core

8 plugins · 340 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Codeandcore User Registration for CF7

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/codeandcore-user-registration-cf7/js/codeandcore-user-registration-cf7.js/wp-content/plugins/codeandcore-user-registration-cf7/css/all.css/wp-content/plugins/codeandcore-user-registration-cf7/css/admin-style.css/wp-content/plugins/codeandcore-user-registration-cf7/js/cnc-admin-script.js

Script Paths

/wp-content/plugins/codeandcore-user-registration-cf7/js/codeandcore-user-registration-cf7.js/wp-content/plugins/codeandcore-user-registration-cf7/js/cnc-admin-script.js

Version Parameters

codeandcore-user-registration-cf7/js/codeandcore-user-registration-cf7.js?ver=codeandcore-user-registration-cf7/css/all.css?ver=codeandcore-user-registration-cf7/css/admin-style.css?ver=codeandcore-user-registration-cf7/js/cnc-admin-script.js?ver=

HTML / DOM Fingerprints

CSS Classes

cf7-user-role-tabcf7-rowcf7-headingcf7-input

Data Attributes

name="cnc_cf7_user_role"id="cnc_cf7_user_role"name="cnc_cf7_enable_registration"id="cnc_cf7_enable_registration"name="cnc_cf7_selected_form"id="cnc_cf7_selected_form"

JS Globals

cf7forms_data

FAQ