Does Connect2Form – Advanced Contact Form Builder have any unpatched vulnerabilities?

No. All known vulnerabilities in Connect2Form – Advanced Contact Form Builder have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Connect2Form – Advanced Contact Form Builder compatible with WordPress 6.9.4?

According to WordPress.org data, Connect2Form – Advanced Contact Form Builder 1.0.9 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Connect2Form – Advanced Contact Form Builder compatible with PHP 7.4+?

Connect2Form – Advanced Contact Form Builder requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Connect2Form – Advanced Contact Form Builder updated?

Connect2Form – Advanced Contact Form Builder was last updated on Feb 13, 2026. Frequent updates are generally a positive security signal.

What is Connect2Form – Advanced Contact Form Builder's security score?

Connect2Form – Advanced Contact Form Builder has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Connect2Form – Advanced Contact Form Builder Security Review

Safety Verdict

Is Connect2Form – Advanced Contact Form Builder Safe to Use in 2026?

Generally Safe

Score 100/100

Connect2Form – Advanced Contact Form Builder has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The plugin "connect2form-advanced-contact-form-builder-with-marketing-tools" v1.0.9 exhibits a mixed security posture. On the positive side, it demonstrates strong adherence to best practices in output escaping (94%) and utilizes prepared statements for a significant majority of its SQL queries (79%). The absence of any known CVEs or previous vulnerabilities is also a positive indicator of the developer's attention to security. However, significant concerns arise from the large attack surface, particularly the 29 unprotected AJAX handlers, which represent potential entry points for attackers. The presence of the `unserialize` function, while only one instance, is a known risk for deserialization vulnerabilities if not handled with extreme caution and input validation. Furthermore, the taint analysis reveals a concerning number of flows with unsanitized paths, with 14 classified as high severity. This suggests that user-supplied data might not be sufficiently validated before being processed or used in sensitive operations.

Key Concerns

Unprotected AJAX handlers
High severity unsanitized taint flows
Dangerous function 'unserialize' present

Vulnerabilities

None known

Connect2Form – Advanced Contact Form Builder Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Connect2Form – Advanced Contact Form Builder Code Analysis

Dangerous Functions

1

Raw SQL Queries

25

94 prepared

Unescaped Output

44

735 escaped

Nonce Checks

38

Capability Checks

44

File Operations

7

External Requests

1

Bundled Libraries

0

Dangerous Functions Found

unserialize$unserialized = @unserialize($raw_value);includes\class-connect2form-submission-handler.php:2682

SQL Query Safety

79% prepared119 total queries

Output Escaping

94% escaped779 total outputs

Data Flows

16 unsanitized

Data Flow Analysis

21 flows16 with unsanitized paths

render_forms_list_page (includes\traits\trait-connect2form-admin-views.php:49)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

29 unprotected

Connect2Form – Advanced Contact Form Builder Attack Surface

Entry Points44

Unprotected29

AJAX Handlers 42

authwp_ajax_connect2form_global_testconnect2form.php:506

noprivwp_ajax_connect2form_global_testconnect2form.php:508

authwp_ajax_connect2form_simple_testconnect2form.php:514

noprivwp_ajax_connect2form_simple_testconnect2form.php:516

authwp_ajax_connect2form_save_formincludes\class-connect2form-admin.php:167

authwp_ajax_connect2form_delete_formincludes\class-connect2form-admin.php:169

authwp_ajax_connect2form_bulk_delete_formsincludes\class-connect2form-admin.php:171

authwp_ajax_connect2form_delete_submissionincludes\class-connect2form-admin.php:173

authwp_ajax_connect2form_bulk_delete_submissionsincludes\class-connect2form-admin.php:175

authwp_ajax_connect2form_duplicate_formincludes\class-connect2form-admin.php:177

authwp_ajax_connect2form_toggle_statusincludes\class-connect2form-admin.php:179

authwp_ajax_connect2form_get_formincludes\class-connect2form-admin.php:181

authwp_ajax_connect2form_preview_formincludes\class-connect2form-admin.php:183

authwp_ajax_connect2form_test_emailincludes\class-connect2form-admin.php:185

authwp_ajax_connect2form_test_recaptchaincludes\class-connect2form-admin.php:187

authwp_ajax_connect2form_bulk_export_submissionsincludes\class-connect2form-admin.php:189

authwp_ajax_connect2form_export_by_dateincludes\class-connect2form-admin.php:191

authwp_ajax_connect2form_export_formincludes\class-connect2form-admin.php:193

authwp_ajax_connect2form_import_formincludes\class-connect2form-admin.php:195

authwp_ajax_connect2form_get_pages_postsincludes\class-connect2form-admin.php:197

authwp_ajax_connect2form_save_email_notificationsincludes\class-connect2form-admin.php:199

authwp_ajax_connect2form_database_cleanupincludes\class-connect2form-admin.php:205

authwp_ajax_connect2form_clear_cacheincludes\class-connect2form-admin.php:207

authwp_ajax_connect2form_reset_settingsincludes\class-connect2form-admin.php:209

authwp_ajax_connect2form_system_healthincludes\class-connect2form-admin.php:211

authwp_ajax_connect2form_backup_dataincludes\class-connect2form-admin.php:213

authwp_ajax_connect2form_create_upload_directoryincludes\class-connect2form-admin.php:215

authwp_ajax_connect2form_update_form_settingsincludes\class-connect2form-admin.php:217

authwp_ajax_connect2form_test_ajaxincludes\class-connect2form-admin.php:223

noprivwp_ajax_connect2form_test_ajaxincludes\class-connect2form-admin.php:225

authwp_ajax_connect2form_basic_testincludes\class-connect2form-admin.php:231

noprivwp_ajax_connect2form_basic_testincludes\class-connect2form-admin.php:233

authwp_ajax_connect2form_manual_auto_deleteincludes\class-connect2form-data-management.php:43

authwp_ajax_connect2form_process_email_queueincludes\class-connect2form-email-queue.php:139

noprivwp_ajax_connect2form_process_email_queueincludes\class-connect2form-email-queue.php:141

authwp_ajax_connect2form_clear_cacheincludes\class-connect2form-performance-features.php:43

authwp_ajax_connect2form_check_ipincludes\class-connect2form-security-features.php:41

noprivwp_ajax_connect2form_check_ipincludes\class-connect2form-security-features.php:43

authwp_ajax_connect2form_validate_nonceincludes\class-connect2form-security.php:55

authwp_ajax_connect2form_submitincludes\class-connect2form-submission-handler.php:43

noprivwp_ajax_connect2form_submitincludes\class-connect2form-submission-handler.php:45

authwp_ajax_connect2form_clear_rate_limitincludes\class-connect2form-submission-handler.php:47

Shortcodes 2

[connect2form] includes\class-connect2form-form-renderer.php:61

[connect2form-advanced-contact-form-builder-with-marketing-tools] includes\class-connect2form-form-renderer.php:63

WordPress Hooks 67

actionadmin_noticesconnect2form.php:89

actionadmin_noticesconnect2form.php:111

actionplugins_loadedconnect2form.php:500

actionconnect2form_process_emailsconnect2form.php:522

actionadmin_enqueue_scriptsincludes\class-connect2form-accessibility.php:73

filterconnect2form_field_attributesincludes\class-connect2form-accessibility.php:79

actionwp_footerincludes\class-connect2form-accessibility.php:85

actionadmin_footerincludes\class-connect2form-accessibility.php:87

filterconnect2form_screen_reader_textincludes\class-connect2form-accessibility.php:93

actionwp_headincludes\class-connect2form-accessibility.php:99

actionadmin_headincludes\class-connect2form-accessibility.php:101

filterconnect2form_focus_managementincludes\class-connect2form-accessibility.php:107

actionadmin_menuincludes\class-connect2form-admin.php:155

actionadmin_enqueue_scriptsincludes\class-connect2form-admin.php:161

actionadmin_initincludes\class-connect2form-admin.php:245

actioninitincludes\class-connect2form-appearance-features.php:39

actionwp_enqueue_scriptsincludes\class-connect2form-appearance-features.php:41

actionwp_headincludes\class-connect2form-appearance-features.php:43

filterconnect2form_form_classesincludes\class-connect2form-appearance-features.php:49

actioninitincludes\class-connect2form-capabilities.php:41

actionadmin_initincludes\class-connect2form-capabilities.php:43

actioninitincludes\class-connect2form-data-management.php:39

actionconnect2form_auto_delete_submissionsincludes\class-connect2form-data-management.php:41

actionadmin_initincludes\class-connect2form-email-queue.php:147

actionwpincludes\class-connect2form-email-queue.php:153

actionconnect2form_cleanup_email_queueincludes\class-connect2form-email-queue.php:159

actionadmin_enqueue_scriptsincludes\class-connect2form-email-queue.php:175

actioninitincludes\class-connect2form-form-renderer.php:41

actionwp_enqueue_scriptsincludes\class-connect2form-form-renderer.php:69

actionwp_footerincludes\class-connect2form-form-renderer.php:232

actionwp_footerincludes\class-connect2form-form-renderer.php:304

actionwp_footerincludes\class-connect2form-form-renderer.php:2156

actioninitincludes\class-connect2form-performance-features.php:39

actionwp_enqueue_scriptsincludes\class-connect2form-performance-features.php:41

actionwp_loadedincludes\class-connect2form-performance-features.php:77

filterwp_memory_limitincludes\class-connect2form-performance-features.php:103

actionwp_footerincludes\class-connect2form-performance-features.php:117

filterconnect2form_query_cacheincludes\class-connect2form-performance.php:97

actionwp_enqueue_scriptsincludes\class-connect2form-performance.php:103

actionadmin_enqueue_scriptsincludes\class-connect2form-performance.php:105

filterconnect2form_lazy_loadincludes\class-connect2form-performance.php:111

actionconnect2form_cleanup_memoryincludes\class-connect2form-performance.php:117

actionconnect2form_optimize_databaseincludes\class-connect2form-performance.php:123

actionconnect2form_daily_cleanupincludes\class-connect2form-performance.php:135

filterconnect2form_minify_assetsincludes\class-connect2form-performance.php:215

filterconnect2form_combine_admin_assetsincludes\class-connect2form-performance.php:255

actioninitincludes\class-connect2form-security-features.php:39

actionconnect2form_before_submissionincludes\class-connect2form-security-features.php:65

actionconnect2form_before_submissionincludes\class-connect2form-security-features.php:75

actionconnect2form_before_submissionincludes\class-connect2form-security-features.php:85

actionconnect2form_before_submissionincludes\class-connect2form-security-features.php:95

actionconnect2form_before_submissionincludes\class-connect2form-security-features.php:105

actionwp_headersincludes\class-connect2form-security.php:43

filterconnect2form_sanitize_inputincludes\class-connect2form-security.php:49

filterconnect2form_rate_limit_checkincludes\class-connect2form-security.php:61

filterconnect2form_allowed_file_typesincludes\class-connect2form-security.php:67

filterconnect2form_max_file_sizeincludes\class-connect2form-security.php:69

actionadmin_initincludes\class-connect2form-settings.php:59

actioninitincludes\class-connect2form-submission-handler.php:53

filterupload_dirincludes\class-connect2form-submission-handler.php:1525

actionadmin_initincludes\settings\antispam-settings.php:39

actionadmin_initincludes\settings\appearance-settings.php:39

actionadmin_initincludes\settings\data-settings.php:39

actionadmin_initincludes\settings\maintenance-settings.php:39

actionadmin_initincludes\settings\performance-settings.php:39

actionadmin_initincludes\settings\recaptcha-settings.php:39

actionadmin_initincludes\settings\security-settings.php:39

Scheduled Events 4

connect2form_auto_delete_submissions

connect2form_cleanup_email_queue

connect2form_daily_cleanup

connect2form_process_emails

Maintenance & Trust

Connect2Form – Advanced Contact Form Builder Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 13, 2026

PHP min version7.4

Downloads449

Community Trust

Rating100/100

Number of ratings2

Active installs0

Alternatives

Connect2Form – Advanced Contact Form Builder Alternatives

Contact Forms by Cimatti

contact-forms

A

91

Create and publish forms in your WordPress website with drag and drop. Contact forms, landing page forms, invitations, and more.

700 11 CVEs

Easy Website Form

easywebsiteform

A

100

Integrate forms created with "Easy Website Form" Builder seamlessly into your WordPress site using the "Easy Website Form" plugin.

10 No CVEs

WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More

wpforms-lite

A

90

The best WordPress contact form plugin. Drag & Drop form builder to create beautiful contact forms, payment forms, & other custom forms.

6.0M 13 CVEs

Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder

fluentform

B

82

Get a fast contact form plugin. Create advanced forms using drag and drop form builder with all smart features.

600K 27 CVEs

MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor

metform

A

87

The most popular Elementor forms builder to create WordPress forms like contact forms, booking forms, feedback form, survey forms, application forms a …

600K 26 CVEs

Developer Profile

Connect2Form – Advanced Contact Form Builder Developer Profile

Connect2Form

1 plugin · 0 total installs

94

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Connect2Form – Advanced Contact Form Builder

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/connect2form-advanced-contact-form-builder-with-marketing-tools/assets/css/connect2form-frontend.css/wp-content/plugins/connect2form-advanced-contact-form-builder-with-marketing-tools/assets/js/connect2form-frontend.js/wp-content/plugins/connect2form-advanced-contact-form-builder-with-marketing-tools/assets/css/connect2form-admin.css/wp-content/plugins/connect2form-advanced-contact-form-builder-with-marketing-tools/assets/js/connect2form-admin.js

Script Paths

/wp-content/plugins/connect2form-advanced-contact-form-builder-with-marketing-tools/assets/js/connect2form-frontend.js/wp-content/plugins/connect2form-advanced-contact-form-builder-with-marketing-tools/assets/js/connect2form-admin.js

Version Parameters

connect2form-advanced-contact-form-builder-with-marketing-tools/assets/css/connect2form-frontend.css?ver=connect2form-advanced-contact-form-builder-with-marketing-tools/assets/js/connect2form-frontend.js?ver=connect2form-advanced-contact-form-builder-with-marketing-tools/assets/css/connect2form-admin.css?ver=connect2form-advanced-contact-form-builder-with-marketing-tools/assets/js/connect2form-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

connect2form-form-wrapperconnect2form-frontendconnect2form-admin-wrap

HTML Comments

Data Attributes

data-connect2form-iddata-connect2form-ajax-url

JS Globals

connect2form_params

Shortcode Output

[connect2form_form id=

FAQ

Connect2Form – Advanced Contact Form Builder Security & Risk Analysis