WP-Safety

Contact Form 7 Shortcode Enabler Security & Risk Analysis

wordpress.org/plugins/contact-form-7-shortcode-enabler

This plugin enables the usage of external shortcodes inside Contact Form 7 Forms.

10K active installs v1.1 PHP + WP 2.6.0+ Updated Oct 18, 2024
cf7contact-form-7shortcodeshortcodes
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Contact Form 7 Shortcode Enabler Safe to Use in 2026?

Generally Safe

Score 92/100

Contact Form 7 Shortcode Enabler has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The static analysis of 'contact-form-7-shortcode-enabler' v1.1 reveals a generally strong security posture. The plugin demonstrates excellent coding practices by not utilizing dangerous functions, exclusively employing prepared statements for SQL queries, and ensuring all output is properly escaped. Furthermore, the absence of file operations and external HTTP requests significantly reduces potential attack vectors. The plugin also shows a good understanding of WordPress security by including capability checks, although it's noteworthy that no nonce checks were detected, which could be a concern in certain scenarios.

Key Concerns

  • No nonce checks detected
Vulnerabilities
None known

Contact Form 7 Shortcode Enabler Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Contact Form 7 Shortcode Enabler Release Timeline

v1.1Current
v1.0
Code Analysis
Analyzed Mar 16, 2026

Contact Form 7 Shortcode Enabler Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
0 escaped
Nonce Checks
0
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0
Attack Surface

Contact Form 7 Shortcode Enabler Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 1
filterwpcf7_form_elementscontact-form-7-shortcode-enabler.php:22
Maintenance & Trust

Contact Form 7 Shortcode Enabler Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedOct 18, 2024
PHP min version
Downloads68K

Community Trust

Rating98/100
Number of ratings12
Active installs10K
Alternatives

Contact Form 7 Shortcode Enabler Alternatives

Contact Form 7 Editor Button

Contact Form 7 Editor Button

cf7-editor-button

C
63

Adds a custom button to TinyMCE WordPress editor to insert shortcodes for Contact Form 7 plugin.

200 1 unpatched
Database Addon for Contact Form 7 – CFDB7

Database Addon for Contact Form 7 – CFDB7

contact-form-cfdb7

A
90

Save and manage Contact Form 7 messages. Never lose important data. It is a lightweight contact form 7 database plugin.

600K 7 CVEs
Redirection for Contact Form 7

Redirection for Contact Form 7

wpcf7-redirect

A
88

Redirect to any page or URL, execute scripts after submission, save data to the database, and unlock additional submission actions for Contact Form 7.

200K 14 CVEs
Advanced Contact form 7 DB

Advanced Contact form 7 DB

advanced-cf7-db

B
83

Save all contact form 7 form submitted data to the database, View, Ordering, Change field labels and Import/Export data using CSV.

70K 8 CVEs
Column Shortcodes

Column Shortcodes

column-shortcodes

A
85

Adds shortcodes to easily create columns in your posts or pages.

60K No CVEs
Developer Profile

Contact Form 7 Shortcode Enabler Developer Profile

Tobias Zimpel

1 plugin · 10K total installs

88
trust score
Avg Security Score
92/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Contact Form 7 Shortcode Enabler

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Version Parameters
contact-form-7-shortcode-enabler/contact-form-7-shortcode-enabler.php?ver=1.1

HTML / DOM Fingerprints

FAQ

Frequently Asked Questions about Contact Form 7 Shortcode Enabler