Eazy Contact Form Security & Risk Analysis

wordpress.org/plugins/eazy-contact-form

This is a very easy contact form with validation. Use shortcode [eazy_contact] for page & for widget [eazy_widget] to display form on page or use …

10 active installs v1.0 PHP + WP 3.7+ Updated May 11, 2018
contact-formeasy-contact-formeasy-simple-contact-formemail-formresponsive-contact-form
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Safety Verdict

Is Eazy Contact Form Safe to Use in 2026?

Generally Safe

Score 85/100

Eazy Contact Form has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago
Risk Assessment

The eazy-contact-form plugin v1.0 demonstrates a generally good security posture based on the provided static analysis. The absence of dangerous functions, SQL injection vulnerabilities (all queries use prepared statements), and file operations is a strong indicator of secure coding practices. Furthermore, the high percentage of properly escaped output significantly reduces the risk of cross-site scripting (XSS) vulnerabilities. The plugin also has no known CVEs, which is a positive sign of its past security track record.

Key Concerns

  • No nonce checks present
  • No capability checks present
Vulnerabilities
None known

Eazy Contact Form Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Eazy Contact Form Release Timeline

v1.1
v1.0Current
Code Analysis
Analyzed Apr 16, 2026

Eazy Contact Form Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
8
58 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

88% escaped66 total outputs
Attack Surface

Eazy Contact Form Attack Surface

Entry Points2
Unprotected0

Shortcodes 2

[eazy_widget] ezyform-widget-form.php:184
[eazy_contact] ezyform.php:186
WordPress Hooks 2
actionwp_enqueue_scriptsindex.php:27
actionwidgets_initindex.php:34
Maintenance & Trust

Eazy Contact Form Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.33
Last updatedMay 11, 2018
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Developer Profile

Eazy Contact Form Developer Profile

NLK Plumbing

1 plugin · 10 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Eazy Contact Form

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/eazy-contact-form/css/main-style.css
Version Parameters
eazy-contact-form/css/main-style.css?ver=

HTML / DOM Fingerprints

CSS Classes
ezyf-infoerrorhide
Data Attributes
id="ezyf"class="ezyf"id="ezyform_name"name="ezyform_name"id="ezyform_email"name="ezyform_email"+6 more
JS Globals
var ezyf_widget_rand
Shortcode Output
<form class="ezyf" id="ezyf" method="post"><input type="text" name="ezyform_name"<input type="text" name="ezyform_email"<input type="text" name="ezyform_subject"
FAQ

Frequently Asked Questions about Eazy Contact Form