[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fxOEDFw2ebG7df35OqV3FjkIP6z0NbURfr-eGYP8R8SA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":48,"crawl_stats":37,"alternatives":56,"analysis":152,"fingerprints":393},"contact-form-x","Contact Form X","3.0.1","Jeff Starr","https:\u002F\u002Fprofiles.wordpress.org\u002Fspecialk\u002F","\u003Cp>Displays a user-friendly contact form that your visitors will love.\u003C\u002Fp>\n\u003Cp>CFX: Contact form reinvented. Fast and friendly. Fresh and clean. Awesome for everyone 🙂\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Overview\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Install, activate, and then display the form anywhere, using the widget, shortcode, or template tag. Here is an overview of Contact Form X:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy to use\u003C\u002Fli>\n\u003Cli>Simple and secure\u003C\u002Fli>\n\u003Cli>ADA and WCAG compliant\u003C\u002Fli>\n\u003Cli>Lightweight and super fast\u003C\u002Fli>\n\u003Cli>Provides multiple form styles\u003C\u002Fli>\n\u003Cli>Customize just about everything\u003C\u002Fli>\n\u003Cli>Display the contact form anywhere\u003C\u002Fli>\n\u003Cli>Add Checkbox, Radio, and Select fields\u003C\u002Fli>\n\u003Cli>Customize the order of all form fields\u003C\u002Fli>\n\u003Cli>Send email to multiple recipients\u003C\u002Fli>\n\u003Cli>Complete documentation via Help tab\u003C\u002Fli>\n\u003Cli>Excellent free plugin support 😎\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>“The famous spam filter SpamAssassin” scores CFX = zero spam!\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>For more details, check out the “Screenshots” section, below.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Form Fields\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Easily choose which fields to display in the form. Each field may be set as required, optional, or disabled. Choose from these fields:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Name\u003C\u002Fli>\n\u003Cli>Website\u003C\u002Fli>\n\u003Cli>Email\u003C\u002Fli>\n\u003Cli>Subject\u003C\u002Fli>\n\u003Cli>Custom Field 1 (can be dropdown, checkbox, radio, text, or phone number)\u003C\u002Fli>\n\u003Cli>Custom Field 2 (can be dropdown, checkbox, radio, text, or phone number)\u003C\u002Fli>\n\u003Cli>Custom Field 3 (can be dropdown, checkbox, radio, text, or phone number)\u003C\u002Fli>\n\u003Cli>Challenge Question\u003C\u002Fli>\n\u003Cli>Message\u003C\u002Fli>\n\u003Cli>Google reCaptcha (v2 or v3 Invisible)\u003C\u002Fli>\n\u003Cli>Cloudflare Turnstile (Invisible Captcha)\u003C\u002Fli>\n\u003Cli>Carbon Copy\u003C\u002Fli>\n\u003Cli>Agree to Terms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can change the order of these fields and customize their labels and placeholders, everything is super flexible.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>For a live demo\u003C\u002Fstrong> of Contact Form X, visit my \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fsupport\u002F#contact\" rel=\"nofollow ugc\">support page\u003C\u002Fa> at Plugin Planet, and also my \u003Ca href=\"https:\u002F\u002Fperishablepress.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">contact page\u003C\u002Fa> at Perishable Press. Feel free to send a test email to see how it works, I won’t mind 😉 Also check out CFX in the “Screenshots” section (below) for a better idea of how the default form is styled out of the box.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Geeky Stuff\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Lots of goodness for the geeks among us:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Built with WordPress APIs\u003C\u002Fli>\n\u003Cli>Ajax-powered form submission\u003C\u002Fli>\n\u003Cli>Remembers all form data on error\u003C\u002Fli>\n\u003Cli>Cloudflare Turnstile (Invisible Captcha)\u003C\u002Fli>\n\u003Cli>Google reCaptcha (v2 or v3 Invisible)\u003C\u002Fli>\n\u003Cli>Drag\u002Fdrop ordering of all form fields\u003C\u002Fli>\n\u003Cli>View your email messages on the WP Dashboard\u003C\u002Fli>\n\u003Cli>Option to enable\u002Fdisable storing of email data in database\u003C\u002Fli>\n\u003Cli>Display form via widget, shortcode, or template tag\u003C\u002Fli>\n\u003Cli>Five CSS themes: Default, Classic, Micro, Synthetic, Dark\u003C\u002Fli>\n\u003Cli>Optionally disable all plugin styles and use your own CSS\u003C\u002Fli>\n\u003Cli>Optionally collect user data like IP, host, and referrer\u003C\u002Fli>\n\u003Cli>Works perfectly with or without Gutenberg Block Editor\u003C\u002Fli>\n\u003Cli>Focused on performance, security, and usability\u003C\u002Fli>\n\u003Cli>Include extra form and user info with each message\u003C\u002Fli>\n\u003Cli>Customize the form’s success and error messages\u003C\u002Fli>\n\u003Cli>Provides plenty of useful hooks for developers\u003C\u002Fli>\n\u003Cli>Targeted loading of CSS and JavaScript assets\u003C\u002Fli>\n\u003Cli>One-click remove email data from database\u003C\u002Fli>\n\u003Cli>One-click restore default options\u003C\u002Fli>\n\u003Cli>Translation ready\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Contact Form X is a fresh new, lighter alternative to the heavier contact forms out there. CFX is lightweight yet fully featured. As they say, “everything you want, nothing you don’t”.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Privacy\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>To help protect user privacy, Contact Form X provides the following features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Agree to terms checkbox, customizable\u003C\u002Fli>\n\u003Cli>Choose which fields to include with the form\u003C\u002Fli>\n\u003Cli>Option to disable collection of user IP address and other data\u003C\u002Fli>\n\u003Cli>Note: this plugin uses cookies to enhance form functionality\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Basically, this plugin enables visitors to send a message via contact form. Any information the user enters into the form will be sent directly to the recipient(s) according to plugin settings. When enabled in the plugin settings, details about each sent message will be stored in the WordPress database. Visit the “Advanced” plugin settings to control and\u002For disable this and other data-collection features.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note:\u003C\u002Fstrong> CFX provides an option to enable Google reCaptcha, which is provided by Google as a third-party service. For details on privacy and more, please refer to official documentation for \u003Ca href=\"https:\u002F\u002Fdevelopers.google.com\u002Frecaptcha\u002F\" rel=\"nofollow ugc\">Google reCaptcha\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Contact Form X is developed and maintained by \u003Ca href=\"https:\u002F\u002Fx.com\u002Fperishable\" rel=\"nofollow ugc\">Jeff Starr\u003C\u002Fa>, 15-year \u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002F\" rel=\"nofollow ugc\">WordPress developer\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002F\" rel=\"nofollow ugc\">book author\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Support development\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>I develop and maintain this free plugin with love for the WordPress community. To show support, you can \u003Ca href=\"https:\u002F\u002Fmonzillamedia.com\u002Fdonate.html\" rel=\"nofollow ugc\">make a donation\u003C\u002Fa> or purchase one of my books:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002F\" rel=\"nofollow ugc\">The Tao of WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdigwp.com\u002F\" rel=\"nofollow ugc\">Digging into WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fhtaccessbook.com\u002F\" rel=\"nofollow ugc\">.htaccess made easy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwp-tao.com\u002Fwordpress-themes-book\u002F\" rel=\"nofollow ugc\">WordPress Themes In Depth\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbooks.perishablepress.com\u002Fdownloads\u002Fwizards-collection-sql-recipes-wordpress\u002F\" rel=\"nofollow ugc\">Wizard’s SQL Recipes for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>And\u002For purchase one of my premium WordPress plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbbq-pro\u002F\" rel=\"nofollow ugc\">BBQ Pro\u003C\u002Fa> – Blazing fast WordPress firewall\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fblackhole-pro\u002F\" rel=\"nofollow ugc\">Blackhole Pro\u003C\u002Fa> – Automatically block bad bots\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fbanhammer-pro\u002F\" rel=\"nofollow ugc\">Banhammer Pro\u003C\u002Fa> – Monitor traffic and ban the bad guys\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fga-google-analytics-pro\u002F\" rel=\"nofollow ugc\">GA Google Analytics Pro\u003C\u002Fa> – Connect WordPress to Google Analytics\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fhead-meta-pro\u002F\" rel=\"nofollow ugc\">Head Meta Pro\u003C\u002Fa> – Ultimate Meta Tags for WordPress\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fsimple-ajax-chat-pro\u002F\" rel=\"nofollow ugc\">Simple Ajax Chat Pro\u003C\u002Fa> – Unlimited chat rooms\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin-planet.com\u002Fusp-pro\u002F\" rel=\"nofollow ugc\">USP Pro\u003C\u002Fa> – Unlimited front-end forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Links, tweets and likes also appreciated. Thanks! 🙂\u003C\u002Fp>\n","Displays a user-friendly contact form that your visitors will love. Lightweight, fast, secure, and accessible (ADA\u002FWCAG compliant).",400,19839,100,32,"2026-02-16T00:10:00.000Z","6.9.4","4.7","5.6.20",[20,21,22,23,24],"ajax","contact","contact-form","email","feedback","https:\u002F\u002Fperishablepress.com\u002Fcontact-form-x\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontact-form-x.3.0.1.zip",1,0,"2022-02-25 15:41:00","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":39,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":29,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2022-25601","contact-form-x-reflected-cross-site-scripting","Contact Form X \u003C= 2.4 - Reflected Cross-Site Scripting","Reflected Cross-Site Scripting (XSS) vulnerability affecting parameter &tab discovered in Contact Form X WordPress plugin (versions \u003C= 2.4).",null,"\u003C=2.4","2.4.1","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-01-22 19:56:02",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F1b996e76-770f-41cc-9601-4e1a3e0127bf?source=api-prod",696,{"slug":49,"display_name":7,"profile_url":8,"plugin_count":50,"total_installs":51,"avg_security_score":52,"avg_patch_time_days":53,"trust_score":54,"computed_at":55},"specialk",30,1241610,98,345,78,"2026-04-03T17:40:58.203Z",[57,83,100,118,133],{"slug":58,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":13,"num_ratings":27,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":69,"tags":70,"homepage":80,"download_link":81,"security_score":82,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"woo-shortcode-popup","20160706.1","jumbaeric","https:\u002F\u002Fprofiles.wordpress.org\u002Fjumbaeric\u002F","\u003Cp>This is a conversion rate optimization plugin that adds a call to action button on woocommerce product archives or product page that opens a popup window when clicked, the name of the button and the content(contact 7 shortcode, map shortcode etc) of the pop up window can be inserted in the admin settings area.\u003C\u002Fp>\n\u003Cp>This plugin requires you have woocommerce installed and activated.\u003C\u002Fp>\n\u003Cp>How to use it? Visit http:\u002F\u002Fitboxkenya.com\u002Fincrease-e-commerce-conversion-rate-woo-short-code-popup\u002F\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Current add-ons\u003C\u002Fstrong>\u003Cbr \u002F>\n* shortcode – Enter shortcode and its content will appear on the popup *  popup button text\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Coming soon\u003C\u002Fstrong>\u003Cbr \u002F>\n* (Got more ideas? Tell me!)\u003C\u002Fp>\n\u003Cp>If you have suggestions for a new add-on, feel free to email me at eric@itboxkenya.com. Want regular updates? Become a fan of my sites on Facebook! http:\u002F\u002Fwww.facebook.com\u002Fitboxkenya Or follow my sites on Twitter! http:\u002F\u002Ftwitter.com\u002Fitboxkenya\u003C\u002Fp>\n","Creates a popup button on woocommerce shop page",10,1650,"2016-08-28T07:05:00.000Z","4.4.34","3.7","",[20,71,72,21,22,73,74,23,24,75,76,77,78,79],"akismet","captcha","contact-form-7","convertion-rate-optimization","form","map","popup","shortcode","woocommerce","http:\u002F\u002Fjuliwebconsultancy.com\u002Fwoo-shortcode-popup","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-shortcode-popup.zip",85,{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":28,"downloaded":91,"rating":28,"num_ratings":28,"last_updated":92,"tested_up_to":93,"requires_at_least":94,"requires_php":95,"tags":96,"homepage":98,"download_link":99,"security_score":82,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"zu-contact","Zu Contact","1.1.5","Dmitry","https:\u002F\u002Fprofiles.wordpress.org\u002Fdmitryrudakov\u002F","\u003Cp>The plugin allows you to add a feedback form or booking form to the page. The data is sent to the server via AJAX (\u003Cem>this can be disabled using the settings and the form will be submitted as usual, with a page reload… but why do you need it?\u003C\u002Fem>). You can flexibly personalize the form and its fields.\u003C\u002Fp>\n\u003Cp>The form is added to a page using the \u003Cstrong>Gutenberg Custom Blocks\u003C\u002Fstrong> – with these blocks, the possibilities for customizing your form are greatly increased.\u003C\u002Fp>\n\u003Cp>You can also add a form to a page using the shortcode \u003Ccode>[zu-contact]\u003C\u002Fcode> or \u003Ccode>[zu-booking]\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Lightweight \u003Ccode>JS script\u003C\u002Fcode> & \u003Ccode>CSS\u003C\u002Fcode> (only \u003Cstrong>4 KB\u003C\u002Fstrong> minified and gzipped)\u003C\u002Fli>\n\u003Cli>Includes form blocks for the new \u003Cstrong>Gutenberg\u003C\u002Fstrong> WordPress block editor\u003C\u002Fli>\n\u003Cli>Also supports adding a contact form to any post or page using a shortcode\u003C\u002Fli>\n\u003Cli>Form submission via AJAX (\u003Cem>configurable by settings\u003C\u002Fem>)\u003C\u002Fli>\n\u003Cli>Data validation on the server\u003C\u002Fli>\n\u003Cli>Support for required fields\u003C\u002Fli>\n\u003Cli>Responsive layout\u003C\u002Fli>\n\u003Cli>Notification of submissions to default admin or custom email addresses\u003C\u002Fli>\n\u003Cli>Send a \u003Ccode>carbon copy\u003C\u002Fcode> of the submitted message (\u003Cem>configurable by settings\u003C\u002Fem>)\u003C\u002Fli>\n\u003Cli>Basic \u003Ccode>SMTP\u003C\u002Fcode> (\u003Cem>Simple Mail Transfer Protocol\u003C\u002Fem>) configuration\u003C\u002Fli>\n\u003Cli>Protect submissions from spam with Google \u003Ccode>reCAPTCHA\u003C\u002Fcode> (\u003Cem>configurable by settings\u003C\u002Fem>)\u003C\u002Fli>\n\u003Cli>Automatically checks all submissions against global database of spam (with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fakismet\u002F\" rel=\"ugc\">Akismet\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Save messages to the database as comments to a post or page\u003C\u002Fli>\n\u003Cli>Compatible with the latest version of WordPress\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Gutenberg blocks\u003C\u002Fh3>\n\u003Cp>With custom blocks for Gutenberg WordPress editor you can easily create new contact forms and customize them with great flexibility:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>You can create a form based on templates or from scratch\u003C\u002Fli>\n\u003Cli>Add and remove form fields\u003C\u002Fli>\n\u003Cli>Change the position of fields, their type and other attributes\u003C\u002Fli>\n\u003Cli>Change field labels, placeholders and validation error messages\u003C\u002Fli>\n\u003Cli>Add to verification form using Google \u003Ccode>reCAPTCHA\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Change the animation of the form loader (used during form submission)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Shortcode attributes\u003C\u002Fh3>\n\u003Cp>You can also personalize the form by adding attributes to the shortcode:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>class\u003C\u002Fstrong> – Change CSS class of form: \u003Ccode>class=\"my-contact-form\"\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>form\u003C\u002Fstrong> – Select one of preloaded forms: \u003Ccode>form=\"contact\"\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>subheading\u003C\u002Fstrong> – Change form subheading: \u003Ccode>subheading=\"My Contact Form\"\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>ajax\u003C\u002Fstrong> – Disable form submission via AJAX: \u003Ccode>ajax=false\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>recaptcha\u003C\u002Fstrong> – Disable Google reCAPTCHA widget: \u003Ccode>recaptcha=false\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>rows\u003C\u002Fstrong> – Change rows amount in textarea: \u003Ccode>rows=12\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>message\u003C\u002Fstrong> – Set predefined form message: \u003Ccode>message=\"Thanks for your hard work!\"\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Examples\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>With custom subheading and without reCAPTCHA:\u003C\u002Fp>\n\u003Cp>[zu-contact subheading=”My Contact Form” recaptcha=false]\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>With custom class, without AJAX and with 8 rows in textarea:\u003C\u002Fp>\n\u003Cp>[zu-contact class=”my-contact-form” ajax=false rows=8]\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Simple but smart and modern Ajax contact form. With Form Blocks and Gutenberg based settings page.",1419,"2022-01-11T16:30:00.000Z","5.8.13","5.3.0","7.2.0",[20,22,23,24,97],"gutenberg","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fzu-contact\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzu-contact.1.1.5.zip",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":110,"num_ratings":111,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":115,"tags":116,"homepage":69,"download_link":117,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"more-mails-for-cf7","More Mails for CF7","1.2.1","Roy Orbitson","https:\u002F\u002Fprofiles.wordpress.org\u002Flev0\u002F","\u003Cp>By default, Contact Form 7 has a limit of two distinct mail messages per form, though each can have multiple recipients. This plugin allows you to add as many as you need. It’s relatively simple, so does not include the automatic configuration error detection that the default mails have.\u003C\u002Fp>\n\u003Cp>If you only wish to send the same message to multiple recipients, you won’t need this plugin; instead use the \u003Cstrong>To\u003C\u002Fstrong> field, or add \u003Cem>Cc\u003C\u002Fem>\u002F\u003Cem>Bcc\u003C\u002Fem> headers in the \u003Cstrong>Additional Headers\u003C\u002Fstrong> field as per \u003Ca href=\"https:\u002F\u002Fcontactform7.com\u002Fadding-cc-bcc-and-other-mail-headers\u002F\" rel=\"nofollow ugc\">Contact Form 7’s documentation\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Tested up to v6.1.2 of Contact Form 7.\u003C\u002Fp>\n","Extends the ubiquitous Contact Form 7 plugin to allow three or more messages.",500,5518,94,6,"2025-10-28T04:44:00.000Z","6.8.5","4.9.0","5.6.0",[21,22,23,24,75],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmore-mails-for-cf7.1.2.1.zip",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":11,"downloaded":126,"rating":28,"num_ratings":28,"last_updated":127,"tested_up_to":128,"requires_at_least":6,"requires_php":129,"tags":130,"homepage":131,"download_link":132,"security_score":82,"vuln_count":28,"unpatched_count":28,"last_vuln_date":37,"fetched_at":30},"cf7-countries","Contact Form 7 Countries","1.0.0","Max Law","https:\u002F\u002Fprofiles.wordpress.org\u002Fatelierlabo\u002F","\u003Cp>Country drop-down menu for Contact Form 7. Install the plugin and you will get “countries drop down” Form tag in CF7. The countries list is the same countries list used by WooCommerce.\u003C\u002Fp>\n","Country drop-down menu for Contact Form 7.",6718,"2019-02-24T15:45:00.000Z","5.1.22","5.6",[21,22,73,23,24],"http:\u002F\u002Fcf7-countries","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-countries.1.0.zip",{"slug":134,"name":135,"version":136,"author":137,"author_profile":138,"description":139,"short_description":140,"active_installs":13,"downloaded":141,"rating":13,"num_ratings":27,"last_updated":142,"tested_up_to":143,"requires_at_least":144,"requires_php":145,"tags":146,"homepage":147,"download_link":148,"security_score":149,"vuln_count":150,"unpatched_count":27,"last_vuln_date":151,"fetched_at":30},"forms-by-made-it","Forms","2.9.0","Made I.T.","https:\u002F\u002Fprofiles.wordpress.org\u002Fmadeit\u002F","\u003Cp>Forms is an easy form manager that lets you manage all your cool forms. Creating your own contact form or newsletter subscriber is easy.\u003C\u002Fp>\n\u003Ch4>Docs & Support\u003C\u002Fh4>\n\u003Cp>You can find \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FmadeITBelgium\u002FWordPress-Forms\" rel=\"nofollow ugc\">docs\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FmadeITBelgium\u002FWordPress-Forms\" rel=\"nofollow ugc\">FAQ\u003C\u002Fa> and more detailed information about Forms on \u003Ca href=\"https:\u002F\u002Fwww.madeit.be\u002F\" rel=\"nofollow ugc\">madeit.be\u003C\u002Fa>. If you were unable to find the answer to your question on the FAQ or in any of the documentation, you should check the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fforms-by-made-it\" rel=\"ugc\">support forum\u003C\u002Fa> on WordPress.org or \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FmadeITBelgium\u002FWordPress-Forms\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>. If you can’t locate any topics that pertain to your particular issue, post a new topic for it.\u003C\u002Fp>\n\u003Ch4>Recommended Plugins\u003C\u002Fh4>\n\u003Cp>The following plugins are working with Forms:\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>You can \u003Ca href=\"https:\u002F\u002Fwww.madeit.be\u002Fforms-plugin\" rel=\"nofollow ugc\">translate Forms\u003C\u002Fa> on \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fforms-by-made-it\" rel=\"nofollow ugc\">\u003Cstrong>translate.wordpress.org\u003C\u002Fstrong>\u003C\u002Fa>.\u003C\u002Fp>\n","Build easy and flexible forms with Forms.",5168,"2025-04-14T21:31:00.000Z","6.8.0","5.0","8.0",[21,22,23,24,75],"https:\u002F\u002Fwww.madeit.be\u002Fproducten\u002Fwordpress\u002Fforms-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fforms-by-made-it.2.9.0.zip",66,3,"2025-08-13 00:00:00",{"attackSurface":153,"codeSignals":260,"taintFlows":339,"riskAssessment":382,"analyzedAt":392},{"hooks":154,"ajaxHandlers":245,"restRoutes":254,"shortcodes":255,"cronEvents":258,"entryPointCount":150,"unprotectedCount":259},[155,161,165,170,174,178,182,186,190,193,196,199,202,205,207,210,214,217,220,224,228,232,235,240],{"type":156,"name":157,"callback":158,"file":159,"line":160},"action","admin_init","check_version","contact-form-x.php",52,{"type":156,"name":162,"callback":163,"file":159,"line":164},"init","load_i18n",53,{"type":166,"name":167,"callback":168,"priority":64,"file":159,"line":169},"filter","plugin_action_links","action_links",54,{"type":166,"name":171,"callback":172,"priority":64,"file":159,"line":173},"plugin_row_meta","plugin_links",55,{"type":166,"name":175,"callback":176,"priority":64,"file":159,"line":177},"admin_footer_text","footer_text",56,{"type":156,"name":179,"callback":180,"file":159,"line":181},"admin_enqueue_scripts","contactformx_enqueue_resources_admin",58,{"type":156,"name":183,"callback":184,"file":159,"line":185},"admin_print_scripts","contactformx_print_js_vars_admin",59,{"type":156,"name":187,"callback":188,"file":159,"line":189},"admin_notices","contactformx_admin_notice",60,{"type":156,"name":157,"callback":191,"file":159,"line":192},"contactformx_register_settings",61,{"type":156,"name":157,"callback":194,"file":159,"line":195},"contactformx_delete_recipient",62,{"type":156,"name":157,"callback":197,"file":159,"line":198},"contactformx_reset_options",63,{"type":156,"name":157,"callback":200,"file":159,"line":201},"contactformx_reset_widget",64,{"type":156,"name":157,"callback":203,"file":159,"line":204},"contactformx_dismiss_notice_save",65,{"type":156,"name":157,"callback":206,"file":159,"line":149},"contactformx_dismiss_notice_version",{"type":156,"name":157,"callback":208,"file":159,"line":209},"contactformx_add_new_options",67,{"type":156,"name":211,"callback":212,"file":159,"line":213},"admin_menu","contactformx_menu_pages",68,{"type":156,"name":162,"callback":215,"file":159,"line":216},"contactformx_register_post_type",70,{"type":156,"name":162,"callback":218,"file":159,"line":219},"contactformx_enable_shortcode_widget",71,{"type":156,"name":221,"callback":222,"file":159,"line":223},"dashboard_glance_items","contactformx_add_glance_items",72,{"type":156,"name":225,"callback":226,"file":159,"line":227},"wp_dashboard_setup","contactformx_add_custom_dashboard_widget",73,{"type":156,"name":229,"callback":230,"file":159,"line":231},"wp_enqueue_scripts","contactformx_enqueue_resources_front",74,{"type":156,"name":233,"callback":234,"file":159,"line":54},"widgets_init","contactformx_register_widget",{"type":166,"name":236,"callback":237,"priority":64,"file":238,"line":239},"widget_text","do_shortcode","inc\\core-helpers.php",369,{"type":156,"name":241,"callback":242,"file":243,"line":244},"load-settings_page_contactformx","contactformx_settings_contextual_help","inc\\help-tab.php",355,[246,251],{"action":247,"nopriv":248,"callback":249,"hasNonce":248,"hasCapCheck":248,"file":159,"line":250},"contactformx",false,"contactformx_ajax",75,{"action":247,"nopriv":252,"callback":249,"hasNonce":248,"hasCapCheck":248,"file":159,"line":253},true,76,[],[256],{"tag":247,"callback":247,"file":159,"line":257},79,[],2,{"dangerousFunctions":261,"sqlUsage":262,"outputEscaping":264,"fileOperations":27,"externalRequests":27,"nonceChecks":336,"capabilityChecks":337,"bundledLibraries":338},[],{"prepared":28,"raw":28,"locations":263},[],{"escaped":265,"rawEcho":266,"locations":267},242,37,[268,271,274,276,278,280,282,283,285,287,288,289,290,291,292,293,295,297,299,301,303,305,307,309,311,313,315,317,319,321,322,324,327,330,331,333,335],{"file":269,"line":173,"context":270},"inc\\core-ajax.php","raw output",{"file":272,"line":273,"context":270},"inc\\settings-callbacks.php",7,{"file":272,"line":275,"context":270},13,{"file":272,"line":277,"context":270},19,{"file":272,"line":279,"context":270},25,{"file":272,"line":281,"context":270},31,{"file":272,"line":266,"context":270},{"file":272,"line":284,"context":270},43,{"file":272,"line":286,"context":270},49,{"file":272,"line":173,"context":270},{"file":272,"line":192,"context":270},{"file":272,"line":209,"context":270},{"file":272,"line":227,"context":270},{"file":272,"line":257,"context":270},{"file":272,"line":82,"context":270},{"file":272,"line":294,"context":270},91,{"file":272,"line":296,"context":270},97,{"file":272,"line":298,"context":270},103,{"file":272,"line":300,"context":270},109,{"file":272,"line":302,"context":270},115,{"file":272,"line":304,"context":270},150,{"file":272,"line":306,"context":270},155,{"file":272,"line":308,"context":270},160,{"file":272,"line":310,"context":270},218,{"file":272,"line":312,"context":270},290,{"file":272,"line":314,"context":270},334,{"file":272,"line":316,"context":270},370,{"file":272,"line":318,"context":270},380,{"file":320,"line":169,"context":270},"inc\\settings-display.php",{"file":320,"line":204,"context":270},{"file":320,"line":323,"context":270},167,{"file":325,"line":326,"context":270},"inc\\settings-reset.php",83,{"file":328,"line":329,"context":270},"inc\\wp-dashboard.php",15,{"file":328,"line":185,"context":270},{"file":328,"line":332,"context":270},119,{"file":334,"line":277,"context":270},"inc\\wp-widget.php",{"file":334,"line":281,"context":270},5,9,[],[340,355,368],{"entryPoint":341,"graph":342,"unsanitizedCount":27,"severity":40},"contactformx_admin_notice (inc\\settings-reset.php:5)",{"nodes":343,"edges":353},[344,348],{"id":345,"type":346,"label":347,"file":325,"line":219},"n0","source","$_GET",{"id":349,"type":350,"label":351,"file":325,"line":326,"wp_function":352},"n1","sink","echo() [XSS]","echo",[354],{"from":345,"to":349,"sanitized":248},{"entryPoint":356,"graph":357,"unsanitizedCount":28,"severity":367},"contactformx_dismiss_notice_save (inc\\settings-reset.php:127)",{"nodes":358,"edges":365},[359,361],{"id":345,"type":346,"label":347,"file":325,"line":360},139,{"id":349,"type":350,"label":362,"file":325,"line":363,"wp_function":364},"wp_redirect() [Open Redirect]",143,"wp_redirect",[366],{"from":345,"to":349,"sanitized":252},"low",{"entryPoint":369,"graph":370,"unsanitizedCount":28,"severity":367},"\u003Csettings-reset> (inc\\settings-reset.php:0)",{"nodes":371,"edges":379},[372,373,374,377],{"id":345,"type":346,"label":347,"file":325,"line":219},{"id":349,"type":350,"label":351,"file":325,"line":326,"wp_function":352},{"id":375,"type":346,"label":376,"file":325,"line":360},"n2","$_GET (x4)",{"id":378,"type":350,"label":362,"file":325,"line":363,"wp_function":364},"n3",[380,381],{"from":345,"to":349,"sanitized":252},{"from":375,"to":378,"sanitized":252},{"summary":383,"deductions":384},"The 'contact-form-x' plugin version 3.0.1 presents a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for SQL queries and having a substantial percentage of its output properly escaped. The presence of nonce and capability checks, while not comprehensive, indicates an awareness of security fundamentals.  However, significant concerns arise from its attack surface, with two out of three entry points lacking authentication checks. This leaves these handlers vulnerable to unauthorized access and potential abuse.  The taint analysis, while not revealing critical or high-severity vulnerabilities in this specific scan, did identify a flow with an unsanitized path, which, combined with unprotected entry points, could lead to issues if malicious input is not handled correctly.  The plugin's vulnerability history shows one past medium-severity Cross-Site Scripting (XSS) vulnerability, which, although currently patched, highlights a past weakness in input sanitization or output escaping practices that needs to be continuously monitored.  Overall, while the plugin has some strengths, the unprotected AJAX handlers represent a notable risk that requires immediate attention.",[385,387,389],{"reason":386,"points":64},"Unprotected AJAX handlers",{"reason":388,"points":336},"Flow with unsanitized path",{"reason":390,"points":391},"Past medium XSS vulnerability",8,"2026-03-16T19:47:34.501Z",{"wat":394,"direct":411},{"assetPaths":395,"generatorPatterns":402,"scriptPaths":403,"versionParams":404},[396,397,398,399,400,401],"\u002Fwp-content\u002Fplugins\u002Fcontact-form-x\u002Fcss\u002Fcontact-form-x-admin.css","\u002Fwp-content\u002Fplugins\u002Fcontact-form-x\u002Fcss\u002Fcontact-form-x-front.css","\u002Fwp-content\u002Fplugins\u002Fcontact-form-x\u002Fcss\u002Fcontact-form-x-shortcode.css","\u002Fwp-content\u002Fplugins\u002Fcontact-form-x\u002Fjs\u002Fcontact-form-x-admin.js","\u002Fwp-content\u002Fplugins\u002Fcontact-form-x\u002Fjs\u002Fcontact-form-x-front.js","\u002Fwp-content\u002Fplugins\u002Fcontact-form-x\u002Fjs\u002Fcontact-form-x-shortcode.js",[],[399,400,401],[405,406,407,408,409,410],"contact-form-x\u002Fcss\u002Fcontact-form-x-admin.css?ver=","contact-form-x\u002Fcss\u002Fcontact-form-x-front.css?ver=","contact-form-x\u002Fcss\u002Fcontact-form-x-shortcode.css?ver=","contact-form-x\u002Fjs\u002Fcontact-form-x-admin.js?ver=","contact-form-x\u002Fjs\u002Fcontact-form-x-front.js?ver=","contact-form-x\u002Fjs\u002Fcontact-form-x-shortcode.js?ver=",{"cssClasses":412,"htmlComments":413,"htmlAttributes":414,"restEndpoints":417,"jsGlobals":418,"shortcodeOutput":420},[4],[],[415,416],"data-contactformx-nonce","data-contactformx-ajaxurl",[],[419],"contactformx_js_vars",[421],"[contactformx]"]