Does Free Post Mail have any unpatched vulnerabilities?

No. All known vulnerabilities in Free Post Mail have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Free Post Mail compatible with WordPress 4.7.32?

According to WordPress.org data, Free Post Mail 1.0 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is Free Post Mail updated?

Free Post Mail was last updated on Sep 26, 2017. Frequent updates are generally a positive security signal.

What is Free Post Mail's security score?

Free Post Mail has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Free Post Mail Security & Risk Analysis

wordpress.org/plugins/free-post-mail

Free Post Mailは無料でご利用いただけるお問い合わせ・資料請求フォームです。メールフォーム内の各入力項目はユーザー自身で自由に定義することができます。また、フォームごとに受信メールアドレス、送信メールアドレス、自動返信メールの内容を指定することができます。 Localization …

60 active installs v1.0 PHP + WP 3.5+ Updated Sep 26, 2017

%e3%83%95%e3%82%a9%e3%83%bc%e3%83%a0%e3%83%a1%e3%83%bc%e3%83%ab%e3%83%a1%e3%83%bc%e3%83%ab%e3%83%95%e3%82%a9%e3%83%bc%e3%83%a0%e8%b3%87%e6%96%99%e8%ab%8b%e6%b1%82%e5%95%8f%e3%81%84%e5%90%88%e3%82%8f%e3%81%9b

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Free Post Mail Safe to Use in 2026?

Generally Safe

Score 85/100

Free Post Mail has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The 'free-post-mail' v1.0 plugin exhibits a generally positive security posture based on the provided static analysis. It demonstrates good practices by implementing nonce checks and capability checks for its entry points. The absence of dangerous functions, file operations, and external HTTP requests further reduces its potential attack surface. The SQL query usage is also promising, with a significant percentage employing prepared statements, mitigating risks of SQL injection.

However, there are minor areas for concern. While the total number of entry points is low and none are reported as unprotected, the static analysis indicates potential for improvement in output escaping, with approximately a quarter of outputs not being properly escaped. This could lead to Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is involved in these outputs.

The plugin's vulnerability history is a significant strength; the complete lack of recorded CVEs, particularly at critical or high severity levels, suggests a history of secure development and maintenance. This, combined with the static analysis findings, indicates a low overall risk for this version. The main weakness lies in the potential for unescaped output, which warrants attention.

Key Concerns

Unescaped output (26% of total)

Vulnerabilities

None known

Free Post Mail Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Free Post Mail Code Analysis

Dangerous Functions

Raw SQL Queries

9 prepared

Unescaped Output

17 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

75% prepared12 total queries

Output Escaping

74% escaped23 total outputs

Attack Surface

Free Post Mail Attack Surface

Entry Points3

Unprotected0

AJAX Handlers 2

authwp_ajax_free_post_mail_actionindex.php:46

noprivwp_ajax_free_post_mail_actionindex.php:47

Shortcodes 1

[free_post_mail_filed] index.php:45

WordPress Hooks 3

actionadmin_menuindex.php:41

actionmce_external_pluginsindex.php:42

actionadmin_enqueue_scriptsindex.php:43

Maintenance & Trust

Free Post Mail Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedSep 26, 2017

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs60

Alternatives

Free Post Mail Alternatives

Formzu WP

formzu-wp

メールフォーム無料作成サービス「フォームズ」のSSL通信フォームを簡単に設置できます。

3K 2 CVEs

Form1

form1

お問合わせフォームを簡単に設置できます。確認画面付きで管理画面から履歴を管理できます。

60 No CVEs

FormToSS-フォムトス- | Contact Form 7 とスプレッドシート（スプシ）の連携をノーコードで！

form-to-ss

100

このプラグインは、Contact Form 7 のフォームデータを、自動的に Google スプレッドシートに送信します。

20 No CVEs

OS-WPカスタマイズプラグイン

os-wpc

OS-WPカスタマイズプラグインは、次のような機能があります。

10 No CVEs

Developer Profile

Free Post Mail Developer Profile

MASAAKI

3 plugins · 10K total installs

trust score

Avg Security Score

87/100

Avg Patch Time

311 days

View full developer profile

Detection Fingerprints

How We Detect Free Post Mail

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/free-post-mail/css/free_post_mail.css/wp-content/plugins/free-post-mail/js/manage.js

Script Paths

/wp-content/plugins/free-post-mail/js/manage.js

HTML / DOM Fingerprints

CSS Classes

bulk-action-selector-top

Data Attributes

id="free_post_mail_id"id="insert_free_post_mail"

Shortcode Output

[free_post_mail_filed]

FAQ