Contact Form Dashboard Security & Risk Analysis
wordpress.org/plugins/contact-form-dashboardCFD stores, organizes and presents all the submissions of the Contact Form 7 in a simplest way. It supports other interesting features like - Dashboard Analytics, Bulk emails / replies handling; Search, sort and export messages.
Is Contact Form Dashboard Safe to Use in 2026?
Generally Safe
Score 85/100Contact Form Dashboard has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "contact-form-dashboard" plugin v1.0.1 exhibits a strong security posture based on the static analysis provided. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events without proper authentication and permission checks indicates a very limited attack surface. Furthermore, the code signals reveal excellent practices with 100% of SQL queries utilizing prepared statements and a high percentage of output correctly escaped. The presence of nonce checks and capability checks further strengthens its defenses.
While the static analysis reveals no critical or high-severity issues, there are two flows with unsanitized paths. This warrants attention as it could potentially lead to vulnerabilities if these paths are exposed to user input without proper sanitization, although the severity is currently assessed as low. The plugin's vulnerability history is completely clean, with no recorded CVEs, which is a very positive sign and suggests a history of secure development. Overall, this plugin appears to be well-developed with strong security foundations, with the only noted concern being the presence of unsanitized paths in a small number of taint flows.
Key Concerns
- Flows with unsanitized paths detected
Contact Form Dashboard Security Vulnerabilities
Contact Form Dashboard Code Analysis
SQL Query Safety
Output Escaping
Data Flow Analysis
Contact Form Dashboard Attack Surface
WordPress Hooks 8
Maintenance & Trust
Contact Form Dashboard Maintenance & Trust
Maintenance Signals
Community Trust
Contact Form Dashboard Alternatives
Advanced Contact form 7 DB
advanced-cf7-db
Save all contact form 7 form submitted data to the database, View, Ordering, Change field labels and Import/Export data using CSV.
Contact Form 7 Database & Mobile App – CF7 DB & App
cf7-mobile-notification
This plugin allows you to store and receive via the App "CF7 Database & Contact Manager for Wordpress" Contact Form 7 form submissions.
WP contact form 7 db & Lead Manager plugin
cf7-lead-manager
contact form 7 db Storage & Lead Manager plugin allows you to save submission data from Contact Form 7 plugin.
Database Addon for Contact Form 7 – CFDB7
contact-form-cfdb7
Save and manage Contact Form 7 messages. Never lose important data. It is a lightweight contact form 7 database plugin.
Form Vibes – Database Manager for Forms
form-vibes
Never miss a single lead! Save and manage all Contact Form 7 and Elementor form submissions easily. View, Export, Analyze and Filter submissions.
Contact Form Dashboard Developer Profile
1 plugin · 80 total installs
How We Detect Contact Form Dashboard
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/contact-form-dashboard/assets/css/style.css/wp-content/plugins/contact-form-dashboard/assets/js/custom.js/wp-content/plugins/contact-form-dashboard/assets/bootstrap/js/bootstrap.js/wp-content/plugins/contact-form-dashboard/assets/js/custom.js/wp-content/plugins/contact-form-dashboard/assets/bootstrap/js/bootstrap.jscontact-form-dashboard/assets/css/style.css?ver=contact-form-dashboard/assets/js/custom.js?ver=contact-form-dashboard/assets/bootstrap/js/bootstrap.js?ver=HTML / DOM Fingerprints
welcome-panelwelcome-panel-columnwelcome-panel-contentwelcome-panel-column-containertitle-a-tagdashboard-sectionwrapSetup with default settingslanguagesregisterjquery and style on initializationUpdated Message+1 moredata-toggledata-target