[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fKT7gi69Xx76weecqrLCACmpxerE0m_lMcNZszXJHOFY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":40,"analysis":145,"fingerprints":281},"contact-form-block","Contact Form Block","1.0.6","Jordy Meow","https:\u002F\u002Fprofiles.wordpress.org\u002Ftigroumeow\u002F","\u003Cp>Simple, yet pretty and perfect for most of us. You will love this contact form! Through its Gutenberg block (or shortcode), you can add it anywhere and make it yours in a few clicks. Lightweight, clean UI, no need to set up anything special or download more plugins. It doesn’t use any JS or CSS files (except if you active ReCAPTCHA). You can find more information on this plugin on \u003Ca href=\"https:\u002F\u002Fmeowapps.com\u002Fcontact-form-block\u002F\" rel=\"nofollow ugc\">Meow Apps: Contact Form Block\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Why another Contact Form?\u003C\u002Fstrong> I have tried many plugins in the past, and I found them all too heavy and complicated. Most of the time, I just wanted a simple \u003Cstrong>contact\u003C\u002Fstrong> form. Why would I need to create a new form in a list of forms, manually decide the fields and make sure everything is well set-up? And why do I need more plugins in order to add ReCAPTCHA support, or even pay for such a basic option?\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>The Contact Form Block has been designed to be used within the Gutenberg Editor. You can modify the labels of the main fields (Name, E-mail, and Message) and the overall design. A header can also be added, with an image and some text. The text and color of the submit button can also be customized. There are 3 basic \u003Cstrong>\u003Cem>themes\u003C\u002Fem>\u003C\u002Fstrong> available: None, Default and Meow Apps. None will add no styles to your contact form, Default will make it work on any theme, and Meow Apps will look a bit more solid.\u003C\u002Fp>\n\u003Cp>The shortcode [contact-form-block] can also be used, just as it is! That shortcode can be used anywhere, in your widgets for example. Have a look at the \u003Ca href=\"https:\u002F\u002Fmeowapps.com\u002Fcontact-form-block\u002Ftutorial\u002F\" rel=\"nofollow ugc\">tutorial\u003C\u002Fa> to learn how to use it.\u003C\u002Fp>\n\u003Cp>For the ReCAPTCHA and the other various settings, please visit the Contact Form page under the Meow Apps menu in your WordPress Admin.\u003C\u002Fp>\n\u003Ch3>Notes\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>The default behavior of this contact form is to send an e-mail to the admin of the WordPress install. That can be easily modified through the available WordPress filters.\u003C\u002Fli>\n\u003Cli>ReCAPTCHA v3 is currently used as an Anti-Spam. If you are interested, you can also develope your own ‘human check’. Have a look at \u003Ca href=\"https:\u002F\u002Fmeowapps.com\u002Fcontact-form-block\u002Ftutorial\u002F#Anti-Spam_Ask_a_question\" rel=\"nofollow ugc\">this\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Best Practices\u003C\u002Fh3>\n\u003Cp>This contact form follows the best practices, in order to guarantee a maximum conversion rate.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Vertical layout (multi-columns result in a loss)\u003C\u002Fli>\n\u003Cli>Labels above the fields (instead of placeholders or tricks)\u003C\u002Fli>\n\u003Cli>Explicit and colorful submit button (labelled ‘Send’ instead of ‘Submit’, by default)\u003C\u002Fli>\n\u003Cli>A limited number of fields (after 3 fields, the conversion rate goes down)\u003C\u002Fli>\n\u003Cli>No captcha (don’t worry about spams, this contact form includes ReCAPTCHA_v3, which is invisible)\u003C\u002Fli>\n\u003Cli>Use a header (with a small image), that will motivate the user to contact you\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Limitations\u003C\u002Fh3>\n\u003Cp>This Contact Form’s goal is to remain simple and fast. New fields and features can be added through its filters and actions, but I will not make the core more complex and heavy.\u003C\u002Fp>\n\u003Cp>Languages: English.\u003C\u002Fp>\n","Tired of those heavy and old contact forms? Try this one. Simple, yet modern, pretty and extremely optimized. No JS or CSS files are loaded.",600,26205,98,39,"2026-01-27T01:26:00.000Z","6.9.4","6.0","7.4",[20,21,22,23,24],"block","captcha","contact","form","mail","https:\u002F\u002Fmeowapps.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontact-form-block.1.0.6.zip",100,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"tigroumeow",27,371190,92,372,73,"2026-04-04T02:43:28.433Z",[41,64,85,107,127],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":49,"downloaded":50,"rating":27,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":55,"tags":56,"homepage":61,"download_link":62,"security_score":63,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"formcraft-recaptcha","reCaptcha Add-On for FormCraft","1.10","Formcrafts","https:\u002F\u002Fprofiles.wordpress.org\u002Fnishncraftsnet\u002F","\u003Cp>This add-on allows you to add Google’s reCaptcha SPAM prevention to your forms.\u003C\u002Fp>\n","Add reCaptcha to your FormCraft forms.",7000,56712,1,"2024-02-21T13:24:00.000Z","5.5.18","3.6","",[21,57,58,59,60],"contact-form-7","form-builder","mailchimp-form","recaptcha","http:\u002F\u002Fformcraft-wp.com\u002Faddons\u002Frecaptcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fformcraft-recaptcha.zip",85,{"slug":65,"name":66,"version":67,"author":68,"author_profile":69,"description":70,"short_description":71,"active_installs":72,"downloaded":73,"rating":27,"num_ratings":51,"last_updated":74,"tested_up_to":75,"requires_at_least":76,"requires_php":55,"tags":77,"homepage":83,"download_link":84,"security_score":63,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"block-email-cf7","Contact Form 7 – Blacklist Unwanted Email","1.1.0","abahalkar","https:\u002F\u002Fprofiles.wordpress.org\u002Fabahalkar\u002F","\u003Ch4>Description\u003C\u002Fh4>\n\u003Cp>Contact form 7 – Blacklist unwanted email plugin is designed to restrict Blacklisted, Spam, Generic and Competitor Email domains preventing your valuable downloadable resources or limiting registrations on your website blogs. The plugin is Free and allows blacklisting of around 4750+ free and unwanted domains. Whether you have a small startup or an established online portal you can use our plugin to restrict your undesired subscribers.\u003C\u002Fp>\n\u003Cp>Through CF7 – Blacklist unwanted emails plugin, site admin can manage email field validation. Create a list of unwanted email domains that could cause a validation error and block them e.g. Gmail.com, Yahoo.com, Live.com or Competitorsdomain.com, etc.\u003C\u002Fp>\n\u003Cp>Default settings can be added in the ‘Block Email CF7’ > Enter ‘List of Email Fields to Validate’ > Enter ‘Default Error Message’ > Enter ‘List of Domains to be Blocked\u002FBlacklisted’ followed by a comma.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Allowed only Business or Company email submission.\u003C\u002Fli>\n\u003Cli>Restrict free domains email (likes gmail.com, yahoo.com etc.) from registrations and submissions of forms.\u003C\u002Fli>\n\u003Cli>Block to registrations and submissions of specific form.\u003C\u002Fli>\n\u003Cli>Block a specific email field in case there are multiple email fields in the form.\u003C\u002Fli>\n\u003Cli>Inbuilt plugin functionalities offers blacklisting around 4750+ free and spam domains. \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more details please visit [Official website:]( \u003Ca href=\"http:\u002F\u002Frebrand.ly\u002Fwpprml\" rel=\"nofollow ugc\"> http:\u002F\u002Fwpstudio.org \u003C\u002Fa> )\u003C\u002Fp>\n\u003Ch4>Demo\u003C\u002Fh4>\n\u003Cp>Here is a demo link for this plugin:\u003Ca href=\"http:\u002F\u002Frebrand.ly\u002Fwppdl\" rel=\"nofollow ugc\">DEMO\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Enjoy! And please don’t forget to rate and ask for support if you face any troubles.\u003C\u002Fp>\n","This is a free add-on plugin for contact form 7, which validates the email field and restrict unwanted email submission as well as allowed only busine &hellip;",400,6005,"2019-10-15T18:53:00.000Z","5.3.21","4.2",[78,79,80,81,82],"blacklist-email-domain-for-contact-form-7","block-email-domain-for-contact-form-7","cf7","restrict-email-domain-submission-for-contact-form-7","validate-email-domain-for-contact-form-7","http:\u002F\u002Fwpstudio.org\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblock-email-cf7.1.1.1.zip",{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":93,"downloaded":94,"rating":95,"num_ratings":96,"last_updated":97,"tested_up_to":75,"requires_at_least":98,"requires_php":99,"tags":100,"homepage":105,"download_link":106,"security_score":63,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"simple-no-bot","Invisible Anti Spam for Contact Form 7 (Simple No-Bot)","2.2.5","lilaeamedia","https:\u002F\u002Fprofiles.wordpress.org\u002Flilaeamedia\u002F","\u003Cp>Simple No-Bot uses javascript to detect if Contact Form 7 is being submitted by a spam bot.\u003C\u002Fp>\n\u003Cp>We wrote this when clients were reporting hundreds of bogus contact forms were getting past Honeypot, but did not want to add a captcha that would impact conversions.\u003C\u002Fp>\n\u003Cp>This lightweight script has been extremely effective for eliminating spam messages from Contact Form 7 (and other forms) submissions. It does not pretend to be a complete anti spam solution.\u003C\u002Fp>\n\u003Ch3>IMPORTANT\u003C\u002Fh3>\n\u003Cp>SNB REJECTS SUBMISSIONS UNLESS THE USER INTERACTS WITH THE FORM. In earlier versions of SNB, the submit button was disabled until this threshold was met. You can now set this option in wp-config.php (see below).\u003C\u002Fp>\n\u003Cp>In most cases it will be enabled after the user starts typing in the first field. It has not broken your form.\u003C\u002Fp>\n\u003Cp>Please report any feedback and false negatives\u002Fpositives on our support form at http:\u002F\u002Fwww.lilaeamedia.com\u002Fcontact\u002F before posting a crappy review. Thanks.\u003C\u002Fp>\n\u003Ch3>New! Improved!\u003C\u002Fh3>\n\u003Cp>You can now hook Simple No Bot into any form. The filter below will return TRUE if bots are detected.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>$is_spam = FALSE; \u002F\u002F you can use whatever flag is being used by your plugin. \n$is_spam = apply_filters( 'snb_test_spam', $is_spam );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>We have added additional analysis to detect pesky bots that can mimic browsers and run scripts.\u003C\u002Fp>\n\u003Cp>SNB now keeps a list of IPs as they are flagged as spam and automatically fails them. The oldest IPs are pruned when it reaches 100 (or SNB_MAX_SPAM_IPS, see below). You can pass ?snb_flush=true as Admin to flush all spam IPs.\u003C\u002Fp>\n\u003Cp>You can disable the submit button until the event threshold is reached by adding the following flag to wp-config.php:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>define( 'SNB_DISABLE_SUBMIT', TRUE );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Other configurable options:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>define( 'SNB_SPAM_THRESHOLD', 2 ); \u002F\u002F maximum score before being considered spam\ndefine( 'SNB_MIN_EVENTS', 2 ); \u002F\u002F minimum number of events required to fetch token\ndefine( 'SNB_BLOCK_SPAM_IPS', TRUE ); \u002F\u002F use IP blocking on hard fails\ndefine( 'SNB_SPAM_IP_LIFESPAN', 60 * 60 * 24 * 30 ); \u002F\u002F time before spam ips expire - default 30 days\ndefine( 'SNB_MAX_SPAM_IPS', 100 ); \u002F\u002F max number of IPs to store before rotating\ndefine( 'SNB_SESSION_LIFESPAN', 60 * 30 ); \u002F\u002F time token is valid to send message - default 30 minutes\u003Ch3>Support\u003C\u002Fh3>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Please report any feedback and false negatives\u002Fpositives on our support form at http:\u002F\u002Fwww.lilaeamedia.com\u002Fcontact\u002F\u003C\u002Fp>\n\u003Cp>(c)2019 Lilaea Media\u003C\u002Fp>\n","Simple, lightweight, no captcha, no configuration. Just works.",200,3093,46,3,"2020-01-12T18:05:00.000Z","5.2","5.6",[101,102,57,103,104],"auto-captcha","bot-blocker","invisible-recaptcha","spam-blocker","http:\u002F\u002Fwww.lilaeamedia.com\u002Fsimple-no-bot\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-no-bot.2.2.5.zip",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":27,"downloaded":115,"rating":27,"num_ratings":51,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":55,"tags":119,"homepage":125,"download_link":126,"security_score":63,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"guten-forms-mailpoet","Gutenberg Forms Add-on for MailPoet","2.1.1","Jack K","https:\u002F\u002Fprofiles.wordpress.org\u002Fjack-kitterhing\u002F","\u003Ch4>MailPoet add-on for Gutenberg Forms plugin\u003C\u002Fh4>\n\u003Cp>This add-on let’s you connect with MailPoet and send leads\u002Fsubscribers to your MailPoet list with the form submissions.\u003C\u002Fp>\n\u003Cp>This is an add-on plugin and requires \u003Ca href=\"https:\u002F\u002Fgutenbergforms.com\u002F\" title=\"Gutenberg Forms\" rel=\"friend nofollow ugc\">Gutenberg Forms\u003C\u002Fa> plugin to work. Gutenberg Forms is the next generation \u003Cstrong>WordPress form builder plugin\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch4>How it Works\u003C\u002Fh4>\n\u003Cp>MailPoet add-on once enabled allow you to add an addditional form action “MailPoet”. Once you add that action, you will get a settings pannel for MailPoet that let’s you select your MailPoet list and map your form fields with the MailPoet fields.\u003C\u002Fp>\n\u003Ch4>Get involved with the Development\u003C\u002Fh4>\n\u003Cp>If you are a coder and wish to contribute to this Opensource Form Builder and this add-on you are welcome to get involved via Github.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Gutenberg Forms Repo:\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmunirkamal\u002Fgutenberg-forms\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fmunirkamal\u002Fgutenberg-forms\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>MailPoet Add-on Repo:\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fgithub.com\u002FCakeWP\u002Fgutenberg-forms-mailpoet\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002FCakeWP\u002Fgutenberg-forms-mailpoet\u003C\u002Fa>\u003C\u002Fp>\n","MailPoet add-on for Gutenberg Forms. Connect with MailPoet and send leads\u002Fsubscribers to your MailPoet list with the form submissions.",6795,"2022-05-18T22:18:00.000Z","5.9.13","5.0",[120,121,122,123,124],"contact-form","gutenberg-block","gutenberg-form","mailpoet","wordpress-form","https:\u002F\u002Fwww.gutenbergforms.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fguten-forms-mailpoet.2.1.1.zip",{"slug":128,"name":129,"version":130,"author":131,"author_profile":132,"description":133,"short_description":134,"active_installs":135,"downloaded":136,"rating":27,"num_ratings":51,"last_updated":137,"tested_up_to":138,"requires_at_least":99,"requires_php":139,"tags":140,"homepage":55,"download_link":144,"security_score":63,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"email-via-emailjs-blocks","Emailjs Block","1.0","Chymmi","https:\u002F\u002Fprofiles.wordpress.org\u002Fchymmi\u002F","\u003Cp>Email via Emailjs Blocks – Send emails from WordPress without a mail server through emailjs.com API. Just add your free API keys and have your contact form ready in no time.\u003C\u002Fp>\n\u003Ch3>Prerequisite\u003C\u002Fh3>\n\u003Cp>First, you need to have an active EmailJS account. Register for free at \u003Ca href=\"https:\u002F\u002Fwww.emailjs.com\" rel=\"nofollow ugc\">emailjs.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>1) Public Key – \u003Ca href=\"https:\u002F\u002Fdashboard.emailjs.com\u002Fadmin\u002Faccount\" rel=\"nofollow ugc\">Get it here\u003C\u002Fa>\u003Cbr \u002F>\n2) Template ID – \u003Ca href=\"https:\u002F\u002Fdashboard.emailjs.com\u002Fadmin\u002Ftemplates\" rel=\"nofollow ugc\">Get it here\u003C\u002Fa>\u003Cbr \u002F>\n3) Service ID – \u003Ca href=\"https:\u002F\u002Fdashboard.emailjs.com\u002Fadmin\" rel=\"nofollow ugc\">Get it here\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Recaptcha\u003C\u002Fh3>\n\u003Cp>The WP plugin “Email via Emailjs Blocks” is also coming with Recaptcha support, to get it working, you have to get Recaptcha keys. Register at \u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002Fadmin\u002Fcreate\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002Fadmin\u002Fcreate\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Issues\u003C\u002Fh3>\n\u003Cp>Please, refer to the GitHub repository \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmilanchymcak\u002Fwordpress-email-via-emailjs-blocks\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fmilanchymcak\u002Fwordpress-email-via-emailjs-blocks\u003C\u002Fa>\u003C\u002Fp>\n","Email via Emailjs Blocks - Send emails from WordPress without a mail server through emailjs.com API. Just add your free API keys and have your contact &hellip;",70,1159,"2022-09-23T19:31:00.000Z","6.0.11","7.3",[20,120,141,142,143],"email","emailjs","gutenberg","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Femail-via-emailjs-blocks.1.0.zip",{"attackSurface":146,"codeSignals":259,"taintFlows":273,"riskAssessment":274,"analyzedAt":280},{"hooks":147,"ajaxHandlers":253,"restRoutes":254,"shortcodes":255,"cronEvents":258,"entryPointCount":51,"unprotectedCount":28},[148,154,158,162,164,168,172,176,179,181,187,190,195,198,202,205,209,212,216,220,224,227,231,235,239,243,246,249,250],{"type":149,"name":150,"callback":151,"priority":152,"file":153,"line":96},"filter","mcfb_form_after_email","my_human_check_after_email",10,"classes\\addons\\human_check.php",{"type":149,"name":155,"callback":156,"priority":152,"file":153,"line":157},"mcfb_validate","my_human_check_validate",4,{"type":149,"name":150,"callback":159,"priority":152,"file":160,"line":161},"after_email","classes\\addons\\phone_field.php",9,{"type":149,"name":163,"callback":23,"priority":152,"file":160,"line":152},"mcfb_form_read_data",{"type":149,"name":165,"callback":166,"priority":152,"file":160,"line":167},"mcfb_email_content","email_content",11,{"type":149,"name":169,"callback":170,"priority":152,"file":160,"line":171},"mcfb_fill_template","fill_template",12,{"type":149,"name":173,"callback":174,"priority":152,"file":175,"line":161},"mcfb_form_info","info","classes\\addons\\recaptcha_v3.php",{"type":149,"name":177,"callback":178,"priority":152,"file":175,"line":152},"mcfb_form_html","inject",{"type":149,"name":155,"callback":180,"priority":152,"file":175,"line":167},"validate",{"type":182,"name":183,"callback":184,"file":185,"line":186},"action","admin_menu","app_menu","classes\\admin.php",8,{"type":182,"name":188,"callback":188,"file":185,"line":189},"admin_enqueue_scripts",15,{"type":182,"name":191,"callback":192,"file":193,"line":194},"admin_post_nopriv_meow_sends_mail","submit_form","classes\\core.php",28,{"type":182,"name":196,"callback":192,"file":193,"line":197},"admin_post_meow_sends_mail",29,{"type":182,"name":199,"callback":200,"file":193,"line":201},"plugins_loaded","loaded",32,{"type":182,"name":203,"callback":203,"file":193,"line":204},"init",33,{"type":182,"name":206,"callback":207,"priority":152,"file":193,"line":208},"wp_mail_failed","mail_failed",34,{"type":182,"name":210,"callback":210,"file":211,"line":189},"rest_api_init","classes\\rest.php",{"type":182,"name":213,"callback":214,"file":215,"line":135},"admin_notices","admin_notices_licensed_free","common\\admin.php",{"type":149,"name":217,"callback":218,"priority":152,"file":215,"line":219},"plugin_row_meta","custom_plugin_row_meta",75,{"type":149,"name":221,"callback":222,"priority":152,"file":215,"line":223},"edd_sl_api_request_verify_ssl","request_verify_ssl",76,{"type":182,"name":203,"callback":225,"file":215,"line":226},"process_deferred_instances",94,{"type":182,"name":183,"callback":228,"priority":229,"file":215,"line":230},"admin_menu_start",5,151,{"type":149,"name":232,"callback":232,"priority":233,"file":215,"line":234},"admin_footer_text",100000,156,{"type":182,"name":236,"callback":237,"file":215,"line":238},"admin_head","closure",282,{"type":182,"name":213,"callback":240,"file":241,"line":242},"admin_notices_news","common\\news.php",43,{"type":149,"name":244,"callback":237,"file":241,"line":245},"safe_style_css",44,{"type":182,"name":213,"callback":247,"file":248,"line":204},"admin_notices_rating","common\\ratings.php",{"type":149,"name":244,"callback":237,"file":248,"line":208},{"type":182,"name":210,"callback":210,"file":251,"line":252},"common\\rest.php",14,[],[],[256],{"tag":4,"callback":23,"file":257,"line":171},"classes\\run.php",[],{"dangerousFunctions":260,"sqlUsage":261,"outputEscaping":266,"fileOperations":157,"externalRequests":51,"nonceChecks":28,"capabilityChecks":161,"bundledLibraries":272},[],{"prepared":28,"raw":51,"locations":262},[263],{"file":251,"line":264,"context":265},86,"$wpdb->get_var() with variable interpolation",{"escaped":267,"rawEcho":51,"locations":268},41,[269],{"file":215,"line":270,"context":271},295,"raw output",[],[],{"summary":275,"deductions":276},"The \"contact-form-block\" v1.0.6 plugin demonstrates a generally strong security posture, with excellent output escaping practices and no recorded vulnerabilities in its history. The static analysis reveals a very small attack surface consisting of a single shortcode and no AJAX handlers or REST API routes that are exposed without authentication.  The code also shows good use of capability checks to restrict access to sensitive operations. However, a significant concern is the presence of a single SQL query that does not utilize prepared statements. While the plugin appears to be well-maintained and has avoided known vulnerabilities, this lack of prepared statements for database interactions represents a potential risk for SQL injection if the data used in that query is not strictly sanitized and validated beforehand.  The absence of taint analysis findings is positive, suggesting that any data flows within the analyzed code are being handled securely or are not present in a way that exposes vulnerabilities.  Overall, the plugin is strong, but the unparameterized SQL query requires careful consideration.",[277],{"reason":278,"points":279},"SQL query not using prepared statements",7,"2026-03-16T19:32:39.503Z",{"wat":282,"direct":291},{"assetPaths":283,"generatorPatterns":286,"scriptPaths":287,"versionParams":288},[284,285],"\u002Fwp-content\u002Fplugins\u002Fcontact-form-block\u002Fapp\u002Findex.js","\u002Fwp-content\u002Fplugins\u002Fcontact-form-block\u002Fapp\u002Fvendor.js",[],[],[289,290],"contact-form-block\u002Fapp\u002Findex.js?ver=","contact-form-block\u002Fapp\u002Fvendor.js?ver=",{"cssClasses":292,"htmlComments":294,"htmlAttributes":295,"restEndpoints":297,"jsGlobals":299,"shortcodeOutput":301},[293],"mcfb-form",[],[296],"data-mcfb-id",[298],"\u002Fcontact-form-block\u002Fv1",[300],"mcfb_contact_form_block",[]]