Does PDF for eForm + Drag And Drop Template Builder have any unpatched vulnerabilities?

No. All known vulnerabilities in PDF for eForm + Drag And Drop Template Builder have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is PDF for eForm + Drag And Drop Template Builder compatible with WordPress 6.9.4?

According to WordPress.org data, PDF for eForm + Drag And Drop Template Builder 3.3.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is PDF for eForm + Drag And Drop Template Builder compatible with PHP 5.6+?

PDF for eForm + Drag And Drop Template Builder requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is PDF for eForm + Drag And Drop Template Builder updated?

PDF for eForm + Drag And Drop Template Builder was last updated on Nov 28, 2025. Frequent updates are generally a positive security signal.

What is PDF for eForm + Drag And Drop Template Builder's security score?

PDF for eForm + Drag And Drop Template Builder has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

PDF for eForm + Drag And Drop Template Builder Security & Risk Analysis

wordpress.org/plugins/eforms-pdf

The plugin helps you create PDF for eForm you can builder template pdf

10 active installs v3.3.2 PHP 5.6+ WP 2.0+ Updated Nov 28, 2025

contact-form-pdfeform-pdfpdf-contact-formpdf-eform

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is PDF for eForm + Drag And Drop Template Builder Safe to Use in 2026?

Generally Safe

Score 100/100

PDF for eForm + Drag And Drop Template Builder has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

The "eforms-pdf" v3.3.2 plugin exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices in several areas, including a high percentage of properly escaped output (93%) and a majority of SQL queries using prepared statements (68%). The absence of known CVEs and critical taint analysis findings are also encouraging signs. However, there are notable areas of concern that significantly elevate the risk profile.

The most prominent risk stems from the substantial attack surface, particularly the 9 unprotected AJAX handlers. This represents a direct entry point for potential attackers to interact with the plugin's functionality without proper authentication or authorization, which is a critical security weakness. The presence of unsanitized paths in 3 taint flows, while not classified as critical or high severity in the static analysis, warrants attention as it could lead to path traversal or other file system manipulation vulnerabilities under specific conditions.

The vulnerability history, showing no recorded CVEs, suggests a history of relative security or perhaps limited historical analysis. While this is positive, it does not negate the risks identified in the current static analysis. The plugin's strengths lie in its output escaping and SQL practices, but these are overshadowed by the exposed AJAX endpoints and potential path manipulation risks, leading to a moderate to high overall risk assessment.

Key Concerns

Unprotected AJAX handlers
Unsanitized paths in taint flows
Low nonce checks count
Low capability check count
Bundled libraries (TinyMCE, TCPDF)

Vulnerabilities

None known

PDF for eForm + Drag And Drop Template Builder Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

PDF for eForm + Drag And Drop Template Builder Code Analysis

Dangerous Functions

Raw SQL Queries

19 prepared

Unescaped Output

434 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

TinyMCETCPDF

SQL Query Safety

68% prepared28 total queries

Output Escaping

93% escaped466 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

8 flows3 with unsanitized paths

form_detail (includes\pdf.php:12)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

9 unprotected

PDF for eForm + Drag And Drop Template Builder Attack Surface

Entry Points22

Unprotected9

AJAX Handlers 10

authwp_ajax_crm_marketing_remove_all_logsbackend\settings.php:6

authwp_ajax_crm_marketing_remove_optionsbackend\settings.php:7

authwp_ajax_crm_marketing_syncbackend\settings.php:8

authwp_ajax_pdfbuilder_builder_textpdf\backend\ajax.php:5

authwp_ajax_pdfbuilder_builder_save_videopdf\backend\ajax.php:6

authwp_ajax_pdfbuilder_builder_send_email_testingpdf\backend\ajax.php:7

authwp_ajax_pdfbuilder_builder_export_htmlpdf\backend\ajax.php:8

authwp_ajax_pdf_reset_templatepdf\backend\ajax.php:9

authwp_ajax_pdfceator_remove_fontpdf\backend\settings.php:7

authwp_ajax_yeekit_dismiss_notyyeekit\document.php:13

Shortcodes 12

[crm_marketing] backend\settings.php:10

[wp_builder_pdf_site_url] pdf\backend\shortcode.php:5

[wp_builder_pdf_site_name] pdf\backend\shortcode.php:6

[wp_builder_pdf_date] pdf\backend\shortcode.php:7

[wp_builder_pdf_time] pdf\backend\shortcode.php:8

[wp_builder_pdf_ip] pdf\backend\shortcode.php:9

[dotab] pdf\backend\shortcode.php:10

[dotab_content] pdf\backend\shortcode.php:11

[wp_builder_pdf_barcode] pdf\backend\shortcode.php:13

[wp_builder_pdf_qrcode] pdf\backend\shortcode.php:14

[pdf_images] pdf\backend\shortcode.php:15

[pdf_download] pdf\backend\shortcode.php:16

WordPress Hooks 72

actionadmin_menuadd-ons.php:8

actionadmin_headadd-ons.php:9

filterfluentform_global_addonsadd-ons.php:10

actionadmin_initadd-ons.php:12

filterhttp_responseadd-ons.php:22

actionadmin_menubackend\settings.php:4

actionadmin_enqueue_scriptsbackend\settings.php:5

filtercrm_marketing_map_fields_formbackend\settings.php:9

filtercrm_marketing_config_tag_activeincludes\pdf.php:5

filtercrm_marketing_data_tablemodules\eform\backend.php:5

filtercrm_marketing_list_add_onsmodules\eform\backend.php:7

actionadd_colunms_pdf_templatemodules\eform\pdf.php:9

actionadmin_initpdf\backend\ajax.php:10

actionadd_meta_boxespdf\backend\ajax.php:11

actionbuilder_pdf_templatespdf\backend\demo\templates_demo.php:5

actionadmin_enqueue_scriptspdf\backend\index.php:5

actionadmin_headpdf\backend\index.php:6

actioninitpdf\backend\index.php:7

actionadd_meta_boxespdf\backend\index.php:8

filterget_sample_permalink_htmlpdf\backend\index.php:9

actionsave_post_pdf_templatepdf\backend\index.php:10

filteradmin_body_classpdf\backend\index.php:11

actionadmin_footerpdf\backend\index.php:12

filterpost_row_actionspdf\backend\index.php:13

actionadmin_action_rednumber_duplicatepdf\backend\index.php:14

actionbuilder_email_tab__editorpdf\backend\index.php:15

actionadmin_menupdf\backend\settings.php:6

actionpdfcreator_custom_sizespdf\backend\settings.php:8

actionplugins_loadedpdf\backend\settings.php:9

actionadmin_noticespdf\backend\settings.php:18

actionadmin_initpdf\backend\settings.php:130

filterwp_builder_pdf_shortcodepdf\backend\shortcode.php:12

filterpdf_builder_block_htmlpdf\backend\templates\barcode_qrcode.php:5

actionpdf_builder_blockpdf\backend\templates\barcode_qrcode.php:6

actionpdf_builder_blockpdf\backend\templates\breakpoint.php:3

filterpdf_builder_block_htmlpdf\backend\templates\breakpoint.php:21

actionpdf_builder_blockpdf\backend\templates\button.php:3

filterpdf_builder_block_htmlpdf\backend\templates\button.php:14

actionpdf_builder_blockpdf\backend\templates\divider.php:3

filterpdf_builder_block_htmlpdf\backend\templates\divider.php:14

actionbuilder_email_tab__editorpdf\backend\templates\editor.php:5

actionpdf_builder_blockpdf\backend\templates\image.php:3

actionpdf_builder_block_htmlpdf\backend\templates\image.php:14

actionpdf_builder_block_htmlpdf\backend\templates\index.php:3

actionpdf_builder_block_rowpdf\backend\templates\row.php:3

filterpdf_builder_block_htmlpdf\backend\templates\row.php:65

actionpdf_builder_blockpdf\backend\templates\signature.php:3

actionpdf_builder_block_htmlpdf\backend\templates\signature.php:21

actionpdf_builder_blockpdf\backend\templates\spacer.php:3

filterpdf_builder_block_htmlpdf\backend\templates\spacer.php:14

actionpdf_builder_blockpdf\backend\templates\text.php:3

filterpdf_builder_block_htmlpdf\backend\templates\text.php:14

filterwp_builder_pdf_shortcodepdf\eforms\index.php:92

actionpdf_builder_blockpdf\eforms\index.php:93

filterpdf_builder_block_htmlpdf\eforms\index.php:94

actionpdfcreator_head_settingspdf\eforms\index.php:95

actionsave_post_pdf_templatepdf\eforms\index.php:96

filteript_fsqm_user_emailpdf\eforms\index.php:97

filteript_fsqm_admin_emailpdf\eforms\index.php:98

filtersuperaddons_pdf_check_propdf\eforms\index.php:99

filterwp_mail_content_typepdf\frontend\index.php:17

filterupload_mimespdf\frontend\index.php:18

actioninitpdf\frontend\index.php:19

filtertemplate_includepdf\frontend\index.php:34

actionadmin_menuyeekit\document.php:10

actionadmin_enqueue_scriptsyeekit\document.php:11

filterfluentform_global_addonsyeekit\document.php:12

actionadmin_noticesyeekit\document.php:14

actionelementor/element/form/section_form_options/after_section_endyeekit\document.php:15

actionadmin_inityeekit\document.php:17

actionelementor/editor/after_enqueue_stylesyeekit\document.php:19

filterhttp_responseyeekit\document.php:208

Maintenance & Trust

PDF for eForm + Drag And Drop Template Builder Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedNov 28, 2025

PHP min version5.6

Downloads1K

Community Trust

Rating60/100

Number of ratings2

Active installs10

Alternatives

PDF for eForm + Drag And Drop Template Builder Alternatives

PDF for WPForms + Drag and Drop Template Builder

pdf-for-wpforms

The plugin helps you create PDF for WPForms you can builder PDF template

1K 6 CVEs

PDF for Contact Form 7 + Drag and Drop Template Builder

pdf-for-contact-form-7

The plugin helps you create PDF for contact form 7 you can builder template pdf

500 2 CVEs

PDF for Gravity Forms + Drag And Drop Template Builder

pdf-for-gravity-forms

The plugin helps you create PDF for Gravity Forms you can builder template pdf

400 1 CVE

PDF for Forminator Forms + Drag and Drop Template Builder

pdf-for-forminator-forms

100

Forminator PDF allows you to automatically generate PDF documents from your Forminator form submissions.

70 No CVEs

PDF for Ninja Forms + Drag and Drop Template Builder

pdf-for-ninja-forms

100

The plugin helps you create PDF for Ninja Form you can builder template pdf

20 No CVEs

Developer Profile

PDF for eForm + Drag And Drop Template Builder Developer Profile

add-ons.org

55 plugins · 26K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

47 days

View full developer profile

Detection Fingerprints

How We Detect PDF for eForm + Drag And Drop Template Builder

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/eforms-pdf/pdf/css/pdf.css/wp-content/plugins/eforms-pdf/pdf/css/pdf_main.css/wp-content/plugins/eforms-pdf/pdf/js/pdf_main.js/wp-content/plugins/eforms-pdf/yeekit/js/document.js/wp-content/plugins/eforms-pdf/yeekit/css/document.css

Script Paths

/wp-content/plugins/eforms-pdf/pdf/js/pdf_main.js/wp-content/plugins/eforms-pdf/yeekit/js/document.js

Version Parameters

eforms-pdf/pdf/css/pdf.css?ver=eforms-pdf/pdf/css/pdf_main.css?ver=eforms-pdf/pdf/js/pdf_main.js?ver=eforms-pdf/yeekit/js/document.js?ver=eforms-pdf/yeekit/css/document.css?ver=

HTML / DOM Fingerprints

CSS Classes

pdf_template_builder

Data Attributes

data-builder-pdf-settingsdata-pdf-template-id

JS Globals

Superaddons_Pdf_Creator_BuilderSuperaddons_Pdf_Creator_Eforms_BuilderRednumber_Marketings_CRM_Init

Shortcode Output

[crm_marketing type="timestamp"][crm_marketing type="date_time"][crm_marketing type="date_time_ymd"][crm_marketing type="date_time_ymd_1"]

FAQ