[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fIiwJYbDNBawOGSQRylkCYz8e6FqWQycwbptM_CLTzzg":3,"$fAZkDfRVXj0MxskdTwV-s4333nD3r0xAAPiVPAizN28s":353,"$feKSrRnvfy1_i80oCwAnAQXK9BZNs7u6UGL7n9Gz0P0Y":357},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":37,"analysis":138,"fingerprints":311},"freecontactformdotcom","FreeContactFormDotCom","1.2","freecontactform","https:\u002F\u002Fprofiles.wordpress.org\u002Ffreecontactform\u002F","\u003Cp>Simple free contact form with text-based spam prevention.\u003C\u002Fp>\n\u003Cp>Configuration Options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Email the results (Email Address)\u003C\u002Fli>\n\u003Cli>Set the spam prevention (anti-spam) question (challenge)\u003C\u002Fli>\n\u003Cli>Set the expected spam prevention answer\u003C\u002Fli>\n\u003Cli>Set a custom thank you message to display after the form has been submitted \u003C\u002Fli>\n\u003Cli>Link to the Authors plugin page from the bottom of your form.\u003C\u002Fli>\n\u003C\u002Ful>\n","A simple free contact form with text-based spam prevention.",10,4000,100,1,"2020-05-22T12:08:00.000Z","5.4.19","2.0.2","",[20,21,22,23,24],"anti-spam","captcha","contact-form","email-form","free-contact-form","http:\u002F\u002Fwww.freecontactform.com\u002Fwordpress-form.php","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffreecontactformdotcom.zip",85,0,null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},30,84,"2026-05-20T00:15:24.202Z",[38,58,77,100,120],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":28,"num_ratings":28,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":18,"tags":51,"homepage":55,"download_link":56,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":57},"captcha-solution","CAPTCHA Solution","1.0","essitco","https:\u002F\u002Fprofiles.wordpress.org\u002Fessitco\u002F","\u003Cp>Captcha Solution is a powerful WordPress Captcha Plug-in that protects your WordPress website from Bots. It allows you to add an extra layer of security on top of you in built protection. This will keep spammers and bots away from submission redundant data in your web forms.\u003C\u002Fp>\n\u003Cp>Captcha Solution is an easy yet powerful plug-in that provides easy-to-solve Captcha tests while still being tough on the bots. It protects your wordpress sites from spam entries by means of text images.\u003C\u002Fp>\n\u003Ch4>Captcha Solution Features:\u003C\u002Fh4>\n\u003Cp>•   Installation and integration is easy\u003Cbr \u002F>\n•   It is fast, secure and reliable\u003Cbr \u002F>\n•   Multiple Captcha on one-page support.\u003Cbr \u002F>\n•   Option to refresh Captcha\u003Cbr \u002F>\n•   Limit maximum login attempts\u003C\u002Fp>\n","CAPTCHA Solution is a CAPTCHA module intended to be called from other plugins. It is originally created for my Contact Form 7 plugin.",80,2234,"2018-12-10T04:47:00.000Z","5.0.25","4.7",[20,21,52,53,54],"contact-form7","text-captcha","wordpress-captcha","https:\u002F\u002Fwww.essitco.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcaptcha-solution.zip","2026-04-16T10:56:18.058Z",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":28,"downloaded":66,"rating":28,"num_ratings":28,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":75,"download_link":76,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"simons-simple-contact-form","Simon's Simple Contact Form","1.0.3","Simon Ward","https:\u002F\u002Fprofiles.wordpress.org\u002Fsi000777\u002F","\u003Cp>\u003Cstrong>Simon’s Simple Contact Form\u003C\u002Fstrong> is a fast, lightweight contact form plugin built for people who want a clean, modern form that “just works” — without the bloat.\u003C\u002Fp>\n\u003Cp>It includes \u003Cstrong>18 built-in themes\u003C\u002Fstrong>, optional \u003Cstrong>SMTP\u003C\u002Fstrong> for better deliverability, and spam protection via \u003Cstrong>Google reCAPTCHA\u003C\u002Fstrong> or a simple \u003Cstrong>internal captcha\u003C\u002Fstrong>. You can switch themes instantly from the admin panel and get a beautiful front-end form in minutes.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect for:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Business websites & service pages\u003Cbr \u002F>\n– Portfolio sites\u003Cbr \u002F>\n– Landing pages\u003Cbr \u002F>\n– Blogs & small shops that just need a reliable contact form\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cp>✅ \u003Cstrong>18 Included Themes\u003C\u002Fstrong>\u003Cbr \u002F>\n– One-click theme switching in the admin (AJAX)\u003Cbr \u002F>\n– Clean, modern styles with readable inputs\u003Cbr \u002F>\n– Mobile responsive\u003C\u002Fp>\n\u003Cp>✅ \u003Cstrong>SMTP (Optional)\u003C\u002Fstrong>\u003Cbr \u002F>\n– Enable SMTP for improved email deliverability\u003Cbr \u002F>\n– Host, port, encryption (TLS\u002FSSL), username & password\u003Cbr \u002F>\n– Leave password blank to keep your saved password\u003C\u002Fp>\n\u003Cp>✅ \u003Cstrong>Spam Protection\u003C\u002Fstrong>\u003Cbr \u002F>\n– Choose \u003Cstrong>Google reCAPTCHA\u003C\u002Fstrong> (v2\u002Fv3 compatible) or the \u003Cstrong>internal captcha\u003C\u002Fstrong>\u003Cbr \u002F>\n– Internal captcha is simple and user-friendly\u003Cbr \u002F>\n– reCAPTCHA keys are stored in settings and verified server-side\u003C\u002Fp>\n\u003Cp>✅ \u003Cstrong>Email Control\u003C\u002Fstrong>\u003Cbr \u002F>\n– Set a custom \u003Cstrong>Sender (From)\u003C\u002Fstrong> address (optional)\u003Cbr \u002F>\n– Set a \u003Cstrong>Reply-To override\u003C\u002Fstrong> (optional) or use the visitor’s email\u003C\u002Fp>\n\u003Cp>✅ \u003Cstrong>Addon System\u003C\u002Fstrong>\u003Cbr \u002F>\n– Upload addon ZIPs from the plugin admin area (optional feature)\u003Cbr \u002F>\n– Addons can include \u003Cstrong>Theme Packs\u003C\u002Fstrong> and a \u003Cstrong>Theme Editor\u003C\u002Fstrong> (if installed)\u003Cbr \u002F>\n– “Purchase Addons” button links to your addon shop page (your site)\u003C\u002Fp>\n\u003Ch3>Addons (Theme Packs + Theme Editor)\u003C\u002Fh3>\n\u003Cp>Want even more styles and full control?\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Theme Packs:\u003C\u002Fstrong> expand your theme library with additional collections.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Theme Editor:\u003C\u002Fstrong> create your own themes (background images, overlay strength, button gradients, border radius, shadows).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Addon shop:\u003Cbr \u002F>\nhttps:\u002F\u002Fsimonward.net\u002Fproduct-category\u002Fplugin-addons\u002F\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>Add the contact form to any post or page using the shortcode:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[sscfp_contact_form]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Backwards compatibility: if you were using the old shortcode, it still works:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[simple_contact_form]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>After adding the shortcode:\u003Cbr \u002F>\n– Pick your preferred theme under the \u003Cstrong>Themes\u003C\u002Fstrong> tab.\u003Cbr \u002F>\n– Configure SMTP (optional) under \u003Cstrong>Settings\u003C\u002Fstrong>.\u003Cbr \u002F>\n– Choose captcha type (Internal captcha or Google reCAPTCHA).\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin can optionally connect to \u003Cstrong>Google reCAPTCHA\u003C\u002Fstrong> to help prevent spam submissions.\u003C\u002Fp>\n\u003Cp>When Google reCAPTCHA is enabled in the plugin settings:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The visitor’s browser loads Google’s reCAPTCHA JavaScript from google.com when the form is displayed.\u003C\u002Fli>\n\u003Cli>On form submission, the plugin sends the reCAPTCHA token (and, if available, the visitor’s IP address) to Google’s verification endpoint to validate the challenge.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Google reCAPTCHA is provided by Google LLC.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Terms: https:\u002F\u002Fpolicies.google.com\u002Fterms\u003C\u002Fli>\n\u003Cli>Privacy: https:\u002F\u002Fpolicies.google.com\u002Fprivacy\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Does this plugin require SMTP?\u003C\u002Fh4>\n\u003Cp>No. SMTP is optional. You can use your default WordPress mail configuration, or enable SMTP for better deliverability.\u003C\u002Fp>\n\u003Ch4>Which captcha options are available?\u003C\u002Fh4>\n\u003Cp>You can choose:\u003Cbr \u002F>\n– \u003Cstrong>Internal Captcha\u003C\u002Fstrong> (simple “solve the sum” style)\u003Cbr \u002F>\n– \u003Cstrong>Google reCAPTCHA\u003C\u002Fstrong> (v2\u002Fv3 compatible)\u003C\u002Fp>\n\u003Ch4>How do I change the email sender \u002F reply-to?\u003C\u002Fh4>\n\u003Cp>In \u003Cstrong>Settings\u003C\u002Fstrong>, you can configure:\u003Cbr \u002F>\n– \u003Cstrong>Sender (From)\u003C\u002Fstrong> address (optional)\u003Cbr \u002F>\n– \u003Cstrong>Reply-To override\u003C\u002Fstrong> (optional)\u003Cbr \u002F>\nIf Reply-To is blank, it will default to the visitor’s email.\u003C\u002Fp>\n\u003Ch4>How many themes are included?\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>18 included themes\u003C\u002Fstrong> are built into the plugin. You can also extend with theme pack addons.\u003C\u002Fp>\n\u003Ch4>Can I add more themes?\u003C\u002Fh4>\n\u003Cp>Yes — via the \u003Cstrong>Addons\u003C\u002Fstrong> tab (if you use theme pack addons). You can also use the \u003Cstrong>Theme Editor addon\u003C\u002Fstrong> (if installed) to make your own.\u003C\u002Fp>\n\u003Ch4>Will it work on mobile?\u003C\u002Fh4>\n\u003Cp>Yes. The form themes are designed to be responsive.\u003C\u002Fp>\n\u003Ch4>Where are addon ZIPs installed?\u003C\u002Fh4>\n\u003Cp>Addons are extracted into:\u003Cbr \u002F>\n    \u002Fwp-content\u002Fuploads\u002Fsscfp-addons\u002F\u003C\u002Fp>\n\u003Ch4>Is this plugin GDPR friendly?\u003C\u002Fh4>\n\u003Cp>The plugin does not add tracking. If you enable Google reCAPTCHA, Google may process user data per their policies. If you want to avoid third-party services, use the internal captcha.\u003C\u002Fp>\n","A lightweight WordPress contact form plugin with 18 themes, SMTP support, Google reCAPTCHA or internal captcha, and instant theme switching.",207,"2026-03-01T15:53:00.000Z","6.9.4","5.6","7.4",[20,22,72,73,74],"forms","recaptcha","smtp","https:\u002F\u002Fsimonward.net\u002Fsimons-simple-contact-form\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimons-simple-contact-form.1.0.3.zip",{"slug":78,"name":79,"version":69,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":86,"num_ratings":87,"last_updated":88,"tested_up_to":68,"requires_at_least":89,"requires_php":90,"tags":91,"homepage":95,"download_link":96,"security_score":97,"vuln_count":98,"unpatched_count":28,"last_vuln_date":99,"fetched_at":57},"akismet","Akismet Anti-spam: Spam Protection","Automattic","https:\u002F\u002Fprofiles.wordpress.org\u002Fautomattic\u002F","\u003Cp>The best anti-spam protection to block spam comments and spam in a contact form. The most trusted antispam solution for WordPress and WooCommerce.\u003C\u002Fp>\n\u003Cp>Akismet checks your comments and contact form submissions against our global database of spam to prevent your site from publishing malicious content. You can review the comment spam it catches on your blog’s “Comments” admin screen.\u003C\u002Fp>\n\u003Cp>Major features in Akismet include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically checks all comments and filters out the ones that look like spam.\u003C\u002Fli>\n\u003Cli>Each comment has a status history, so you can easily see which comments were caught or cleared by Akismet and which were spammed or unspammed by a moderator.\u003C\u002Fli>\n\u003Cli>URLs are shown in the comment body to reveal hidden or misleading links.\u003C\u002Fli>\n\u003Cli>Moderators can see the number of approved comments for each user.\u003C\u002Fli>\n\u003Cli>A discard feature that outright blocks the worst spam, saving you disk space and speeding up your site.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>PS: You’ll be prompted to get an Akismet.com API key to use it, once activated. Keys are free for personal blogs; paid subscriptions are available for businesses and commercial sites.\u003C\u002Fp>\n","The best anti-spam protection to block spam comments and spam in a contact form. The most trusted antispam solution for WordPress and WooCommerce.",6000000,387141886,94,1176,"2025-11-12T16:31:00.000Z","5.8","7.2",[20,92,93,22,94],"antispam","comments","spam","https:\u002F\u002Fakismet.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fakismet.5.6.zip",99,2,"2015-10-13 00:00:00",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":110,"num_ratings":111,"last_updated":112,"tested_up_to":68,"requires_at_least":113,"requires_php":69,"tags":114,"homepage":118,"download_link":119,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":57},"contact-form-7-honeypot","CF7 Apps – Honeypot, Database, Redirection, Webhook, and Addons for Contact Form 7","3.4.0","Saad Iqbal","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaadiqbal\u002F","\u003Cp>\u003Cstrong>Add extra Spam Protection functionalities to your Contact Form 7 forms with CF7 Apps.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Contact Form 7 is one of the most popular form plugins for WordPress, but \u003Cstrong>it lacks many advanced features\u003C\u002Fstrong> that modern websites need. CF7 Apps adds extra Spam Protection functionalities to your Contact Form 7 forms, introducing honeypot and hCaptcha options.\u003C\u002Fp>\n\u003Cp>👉 Get Support: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcontact-form-7-honeypot\u002F\" rel=\"ugc\">Click Here\u003C\u002Fa>\u003Cbr \u002F>\n👉 Check out the \u003Ca href=\"https:\u002F\u002Fcf7apps.com\u002Fdocs\u002F?utm_source=wp_org&utm_medium=readme&utm_campaign=documentation\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>What CF7 Apps Can Do for You ?\u003C\u002Fh3>\n\u003Cp>Right out of the box, CF7 Apps includes:\u003C\u002Fp>\n\u003Cp>✅ \u003Cstrong>Honeypot App\u003C\u002Fstrong>\u003Cbr \u002F>\n✅ \u003Cstrong>hCaptcha App\u003C\u002Fstrong>\u003Cbr \u002F>\n✅ \u003Cstrong>Database Entries App\u003C\u002Fstrong>\u003Cbr \u002F>\n✅ \u003Cstrong>Redirection App\u003C\u002Fstrong>\u003Cbr \u002F>\n✅ \u003Cstrong>Webhook App\u003C\u002Fstrong>\u003Cbr \u002F>\n✅ \u003Cstrong>ACF Integeration\u003C\u002Fstrong>\u003Cbr \u002F>\n💡 \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fcf7apps.com\u002Fsubmit-idea\u002F?utm_source=wp_org&utm_medium=readme&utm_campaign=suggest_a_feature\" rel=\"nofollow ugc\">Suggest a Feature\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>And that’s just the beginning.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Save and Manage CF7 Form Submissions\u003C\u002Fstrong>\u003Cbr \u002F>\nThe Entries Database App stores all Contact Form 7 submissions directly to your WordPress database. Easily filter entries by form or date, view individual CF7 submissions, and export or delete them when needed. This ensures you never lose important leads or messages, even if emails fail to deliver.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Add a Honeypot Field to Prevent Spam\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Our \u003Cstrong>Honeypot Contact Form 7 extension\u003C\u002Fstrong> creates a hidden field inside your Contact Form 7 forms. Real users never see it, but bots do—and that’s how the bots fall for the trap. It blocks automated spam before it even hits your inbox.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Add hCaptcha to Contact Form 7\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Protect your forms from spam bots using \u003Cstrong>hCaptcha,\u003C\u002Fstrong> a privacy-friendly alternative to Google reCAPTCHA. This extension integrates directly with CF7 and works instantly after setup. No coding is required, and no extra plugins are needed. Just set up your site keys and you’re done.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Manage & View Contact Form 7 Entries\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Store, view, and manage all your Contact Form 7 submissions directly inside your WordPress dashboard. This extension logs every form entry automatically, giving you an organized record of user submissions. No coding or third-party tools required just activate and start tracking instantly.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Redirect Users After Form Submission\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Easily redirect users to any internal or external page after submitting a form. This extension lets you control the post-submission experience with custom URLs, thank-you pages, or marketing funnels. No coding needed configure your redirect URL and it works immediately.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Send Form Data via Webhooks\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Automatically forward your Contact Form 7 submission data to any external service using \u003Cstrong>webhooks.\u003C\u002Fstrong>This extension enables seamless API integrations, automation workflows, and third-party connections. No additional plugins or coding required just add your webhook URL and you’re ready to go.\u003C\u002Fp>\n\u003Cp>🌟 \u003Cstrong>Integrate ACF Fields into Your Forms\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Easily pull Advanced Custom Fields (ACF) data into your Contact Form 7 forms using the built-in ACF field tags. This integration lets you map and display your custom ACF fields directly inside CF7 without any extra plugins or coding. Just enable the feature, select your ACF fields, and your form is ready to use.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NOTE:\u003C\u002Fstrong>\u003Cbr \u002F>\nThe best thing is that both features work independently. You can run them alone or together based on your site’s needs.\u003C\u002Fp>\n\u003Ch3>Real Use Cases for CF7 Apps\u003C\u002Fh3>\n\u003Cp>With the CF7 Apps, you can do the following:\u003Cbr \u002F>\n  ✔️ Trap bots using a honeypot field without affecting users\u003Cbr \u002F>\n  ✔️ Add hCaptcha to Contact Form 7 for privacy-first anti-spam\u003Cbr \u002F>\n  ✔️ Store and manage Contact Form 7 entries directly in WordPress\u003Cbr \u002F>\n  ✔️ Redirect your Contact Form 7 submissions to any internal or external page.\u003Cbr \u002F>\n  ✔️ Send your form data to any third-party service or custom endpoint through our Webhook.\u003Cbr \u002F>\n  ✔️ Display dynamic ACF field values inside your Contact Form 7 forms for personalized entries.\u003C\u002Fp>\n\u003Ch3>Why Should You Install CF7 Apps?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Works exclusively with Contact Form 7\u003C\u002Fli>\n\u003Cli>Modular design — activate only the features you need\u003C\u002Fli>\n\u003Cli>Lightweight — no unnecessary code or bloat\u003C\u002Fli>\n\u003Cli>Built for form security, user control, and advanced customization\u003C\u002Fli>\n\u003Cli>Continuously updated with new apps and requested features\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>We built CF7 Apps for users who want more power without abandoning the simplicity of Contact Form 7.\u003C\u002Fp>\n\u003Ch3>Try Our Other Awesome WordPress Plugins\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpost-smtp\u002F\" rel=\"ugc\">Post SMTP:\u003C\u002Fa>\u003C\u002Fstrong> Reliable WordPress email delivery plugin with detailed email logs and multiple SMTP integrations.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgutena-forms\u002F\" rel=\"ugc\">Gutena Forms:\u003C\u002Fa>\u003C\u002Fstrong> Create modern, responsive contact forms directly in the Gutenberg block editor. Includes advanced fields, spam protection (reCAPTCHA & Cloudflare Turnstile), and entry management.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-easy-pay\u002F\" rel=\"ugc\">WP EasyPay:\u003C\u002Fa>\u003C\u002Fstrong> Accept Square payments and donations easily on your WordPress site.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpassword-protected\u002F\" rel=\"ugc\">Password Protected:\u003C\u002Fa>\u003C\u002Fstrong> Secure your WordPress site, posts, pages, and categories with simple password protection.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffile-manager-advanced\u002F\" rel=\"ugc\">Advanced File Manager:\u003C\u002Fa>\u003C\u002Fstrong> Manage and organize WordPress files effortlessly from your dashboard.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwc-shop-sync\u002F\" rel=\"ugc\">WC Shop Sync:\u003C\u002Fa>\u003C\u002Fstrong> Add Square payments and sync WooCommerce products, customers, and orders with Square POS.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmycred\u002F\" rel=\"ugc\">myCred:\u003C\u002Fa>\u003C\u002Fstrong> Add gamification, rewards, ranks, and a points management system to your WordPress website.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbookify\u002F\" rel=\"ugc\">Bookify:\u003C\u002Fa>\u003C\u002Fstrong> Your complete online bookings and appointment scheduling solution for WordPress.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Faio-login\u002F\" rel=\"ugc\">All In One Login:\u003C\u002Fa>\u003C\u002Fstrong> Secure your WordPress login page, change wp-login.php URL, and add social logins including Google, Facebook, Microsoft, and LINE.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fnew-user-approve\u002F\" rel=\"ugc\">New User Approve:\u003C\u002Fa>\u003C\u002Fstrong> Control new user registrations by approving or denying signups.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwpexperts.io\u002F\" rel=\"nofollow ugc\">WP Experts WooCommerce Store:\u003C\u002Fa>\u003C\u002Fstrong> Explore premium WooCommerce plugins and solutions by WPExperts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contribute or Report Issues\u003C\u002Fh3>\n\u003Cp>Do you have a feature request or bug to report? Contact us via the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcontact-form-7-honeypot\" rel=\"ugc\">official Support Channel.\u003C\u002Fa>\u003C\u002Fp>\n","Addons for Contact Form 7 — Honeypot, Database Entries, Redirection, Spam Protection, Webhooks, ACF integration for Contact Form 7, and more.",300000,5612137,76,131,"2026-01-30T04:54:00.000Z","4.8",[20,21,115,116,117],"cf7-database","honeypot","spam-protection","https:\u002F\u002Fcf7apps.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontact-form-7-honeypot.3.4.0.zip",{"slug":116,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":108,"downloaded":127,"rating":13,"num_ratings":128,"last_updated":129,"tested_up_to":68,"requires_at_least":130,"requires_php":18,"tags":131,"homepage":134,"download_link":135,"security_score":136,"vuln_count":98,"unpatched_count":28,"last_vuln_date":137,"fetched_at":57},"WP Armour – Honeypot Anti Spam","2.3.04","Dnesscarkey","https:\u002F\u002Fprofiles.wordpress.org\u002Fdnesscarkey\u002F","\u003Cp>This plugins block spam submissions using honeypot anti spam technic. No Captcha or extra verification field hassle to the users. Only lets spam bots to suffer using our anti spam filter.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Automatic anti spam protection for following forms (Available in Free Version) . No setup required.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WP Comments\u003C\u002Fli>\n\u003Cli>WP Registraton\u003C\u002Fli>\n\u003Cli>BBPress Forum (\u003Ca href=\"https:\u002F\u002Fbbpress.org\" rel=\"nofollow ugc\">bbpress.org\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Contact Form 7 (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcontact-form-7\" rel=\"ugc\">wordpress.org\u002Fplugins\u002Fcontact-form-7\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Gravity Forms (For Non Ajax and Single Page\u002FStep Form – \u003Ca href=\"https:\u002F\u002Fwww.gravityforms.com\" rel=\"nofollow ugc\">gravityforms.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>WPForms (\u003Ca href=\"https:\u002F\u002Fwpforms.com\" rel=\"nofollow ugc\">wpforms.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Formidable Forms (\u003Ca href=\"https:\u002F\u002Fformidableforms.com\" rel=\"nofollow ugc\">formidableforms.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Caldera Forms (\u003Ca href=\"https:\u002F\u002Fcalderaforms.com\" rel=\"nofollow ugc\">calderaforms.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Toolset Forms (\u003Ca href=\"https:\u002F\u002Ftoolset.com\" rel=\"nofollow ugc\">toolset.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Elementor Forms (\u003Ca href=\"https:\u002F\u002Felementor.com\" rel=\"nofollow ugc\">elementor.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Fluent Forms (\u003Ca href=\"https:\u002F\u002Ffluentforms.com\" rel=\"nofollow ugc\">fluentforms.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Divi Theme Contact Form (\u003Ca href=\"https:\u002F\u002Fwww.elegantthemes.com\" rel=\"nofollow ugc\">elegantthemes.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Theme My Login ( https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftheme-my-login\u002F )\u003C\u002Fli>\n\u003Cli>WooCommerce Reviews Pro\u003C\u002Fli>\n\u003Cli>GDPR compliant. No tracking, cookie storage or external server calls.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>WP Armour Extended (Paid Version) supports additional anti spam protection and features.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Record Spam Submission, view what spam bot are trying to submit \u003C\u002Fli>\n\u003Cli>Logs spam bot IPs.\u003C\u002Fli>\n\u003Cli>Block spam bot IPs if multiple spam is submitted. Add extra level of anti spam filter based on IPs. Stops spam bot from using unwanted bandwidth and save valuable server resource.\u003C\u002Fli>\n\u003Cli>WooCommerce Checkout & Registration including Card Testing Orders (\u003Ca href=\"https:\u002F\u002Fwoocommerce.com\" rel=\"nofollow ugc\">woocommerce.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads Checkout and Registration (\u003Ca href=\"https:\u002F\u002Feasydigitaldownloads.com\" rel=\"nofollow ugc\">easydigitaldownloads.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>QuForm Contact Form (\u003Ca href=\"https:\u002F\u002Fwww.quform.com\" rel=\"nofollow ugc\">quform.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Ninja Forms (\u003Ca href=\"https:\u002F\u002Fninjaforms.com\" rel=\"nofollow ugc\">https:\u002F\u002Fninjaforms.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Gravity Forms (For Ajax Based and Multi Step Forms – \u003Ca href=\"https:\u002F\u002Fwww.gravityforms.com\" rel=\"nofollow ugc\">gravityforms.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>MC4WP: Mailchimp for WordPress (\u003Ca href=\"https:\u002F\u002Fwww.mc4wp.com\" rel=\"nofollow ugc\">mc4wp.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>S2 Members (\u003Ca href=\"https:\u002F\u002Fs2member.com\" rel=\"nofollow ugc\">s2member.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Ulimate Members (\u003Ca href=\"https:\u002F\u002Fultimatemember.com\u002F\" rel=\"nofollow ugc\">ultimatemember.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Bricks Builder Form (\u003Ca href=\"https:\u002F\u002Fbricksbuilder.io\u002F\" rel=\"nofollow ugc\">bricksbuilder.io\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>BricksForge Pro Form (\u003Ca href=\"https:\u002F\u002Fbricksforge.io\u002F\" rel=\"nofollow ugc\">bricksforge.io\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Beaver Builder Contact Form Module (\u003Ca href=\"https:\u002F\u002Fwww.wpbeaverbuilder.com\u002F\" rel=\"nofollow ugc\">Beaver Builder\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Strong Testimonials (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fstrong-testimonials\u002F\" rel=\"ugc\">wordpress.org\u002Fplugins\u002Fstrong-testimonials\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Formcraft Form (\u003Ca href=\"https:\u002F\u002Fformcraft-wp.com\u002F\" rel=\"nofollow ugc\">formcraft-wp.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Forminator Form (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fforminator\u002F\" rel=\"ugc\">wordpress.org\u002Fplugins\u002Fforminator\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>WS Form (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fws-form\u002F\" rel=\"ugc\">wordpress.org\u002Fplugins\u002Fws-form\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>YITH Easy Login & Register Popup for WooCommerce\u003C\u002Fli>\n\u003Cli>UsersWP (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fuserswp\u002F\" rel=\"ugc\">wordpress.org\u002Fplugins\u002Fuserswp\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Youzify (\u003Ca href=\"https:\u002F\u002Fyouzify.com\u002F\" rel=\"nofollow ugc\">youzify.com\u002F\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>MailPoet (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmailpoet\u002F\" rel=\"ugc\">wordpress.org\u002Fplugins\u002Fmailpoet\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Brevo – SendInBlue (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmailin\u002F\" rel=\"ugc\">wordpress.org\u002Fplugins\u002Fmailin\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>JetForm Builder (\u003Ca href=\"https:\u002F\u002Fjetformbuilder.com\u002F\" rel=\"nofollow ugc\">jetformbuilder.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>HTMLform plugin (\u003Ca href=\"https:\u002F\u002Fwww.htmlformsplugin.com\" rel=\"nofollow ugc\">htmlformsplugin.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Avia Enfold Theme (\u003Ca href=\"https:\u002F\u002Fkriesi.at\u002Fthemes\u002Fenfold\" rel=\"nofollow ugc\">kriesi.at\u002Fthemes\u002Fenfold\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>BuddyPress (\u003Ca href=\"https:\u002F\u002Fbuddypress.org\" rel=\"nofollow ugc\">buddypress.org\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>BuddyBoss (\u003Ca href=\"https:\u002F\u002Fwww.buddyboss.com\" rel=\"nofollow ugc\">buddyboss.com\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Sure Forms (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsureforms\u002F\" rel=\"ugc\">wordpress.org\u002Fplugins\u002Fsureforms\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Everest Forms (\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feverest-forms\u002F\" rel=\"ugc\">wordpress.org\u002Fplugins\u002Feverest-forms\u003C\u002Fa>)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can get the WP Armour – Anti Spam Extended from \u003Ca title=\"WP Armour Extended - Anti Spam\" href=\"https:\u002F\u002Fdineshkarki.com.np\u002Fbuy-wp-armour-extended\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How our plugin is different than other honeypot anti spam plugins ? \u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Works for most of the forms and wordpress system including registation and comments. So All in one anti spam solution.\u003C\u002Fli>\n\u003Cli>No external API calls like Akismet or CleanTalk for spam filtering. \u003C\u002Fli>\n\u003Cli>GDPR Compliant.\u003C\u002Fli>\n\u003Cli>Spam bots can’t use javascript so we use javascript to insert honeypot anti spam field in the form and spam bots can’t fill it to pass anti spam test. \u003C\u002Fli>\n\u003Cli>Unique honeypot field name generated for each wordpress installation, so it is hard for spam bots to make one fit for all solution to bypass honeypot anti spam test.\u003C\u002Fli>\n\u003Cli>No setup required. Just activate the plugin and it enables anti spam for all supported forms, comment and registration.\u003C\u002Fli>\n\u003Cli>No API or monthly subscription needed like other plugins. Though we have \u003Ca title=\"WP Armour Extended - Anti Spam\" href=\"https:\u002F\u002Fdineshkarki.com.np\u002Fbuy-wp-armour-extended\" rel=\"nofollow ugc\">Premium extended version\u003C\u002Fa> of the plugin for more support with yearly license.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Support\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>If you have any issue, you can write to using \u003Ca title=\"WP Armour - Honeypot Anti Spam Forum\" href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fhoneypot\u002F\" rel=\"ugc\">support forum.\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Need distance-based delivery fees in WooCommerce?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Calculate accurate shipping costs automatically with \u003Ca href=\"https:\u002F\u002Fhcn.im\u002Froutepricing\" rel=\"nofollow ugc\">RoutePricing\u003C\u002Fa>.\u003Cbr \u002F>\nUses Google Maps to set dynamic prices per km\u002Fmi — perfect for restaurants, local shops, and delivery businesses.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Support Us at Patreon\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Your support is vital for us to keep fighting spam. By supporting us on \u003Ca href=\"https:\u002F\u002Fwww.patreon.com\u002Fwp_armour\" rel=\"nofollow ugc\">Patreon\u003C\u002Fa> with as little as USD 1, you will help us continue developing of our anti spam plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Our other plugins\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fuse-any-font\" rel=\"ugc\">Use Any Font\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjquery-validation-for-contact-form-7\u002F\" rel=\"ugc\">Jquery Validation For Contact Form 7\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdineshkarki.com.np\u002Fjquery-validation-for-gravity-forms\" rel=\"nofollow ugc\">Jquery Validation For Gravity Forms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblock-specific-plugin-updates\u002F\" rel=\"ugc\">Block Specific Plugin Updates\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Fastest growing Anti Spam plugin. No API calls, subscriptions, captcha or puzzle. Full GDPR complaint. For comments, contact form, login, registration",4538801,1352,"2025-12-20T04:14:00.000Z","5.0",[78,20,132,133,117],"comment-spam","contact-form-spam","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhoneypot\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhoneypot.2.3.04.zip",98,"2024-03-15 00:00:00",{"attackSurface":139,"codeSignals":154,"taintFlows":188,"riskAssessment":301,"analyzedAt":310},{"hooks":140,"ajaxHandlers":147,"restRoutes":148,"shortcodes":149,"cronEvents":153,"entryPointCount":14,"unprotectedCount":28},[141],{"type":142,"name":143,"callback":144,"file":145,"line":146},"action","admin_menu","freecontactformdotcomsettings_menu","freecontactformdotcom.php",13,[],[],[150],{"tag":151,"callback":4,"file":145,"line":152},"contact_form_here",329,[],{"dangerousFunctions":155,"sqlUsage":156,"outputEscaping":158,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":14,"bundledLibraries":187},[],{"prepared":28,"raw":28,"locations":157},[],{"escaped":28,"rawEcho":146,"locations":159},[160,163,165,167,169,171,173,175,177,179,181,183,185],{"file":145,"line":161,"context":162},79,"raw output",{"file":145,"line":164,"context":162},83,{"file":145,"line":166,"context":162},87,{"file":145,"line":168,"context":162},91,{"file":145,"line":170,"context":162},224,{"file":145,"line":172,"context":162},242,{"file":145,"line":174,"context":162},260,{"file":145,"line":176,"context":162},268,{"file":145,"line":178,"context":162},276,{"file":145,"line":180,"context":162},284,{"file":145,"line":182,"context":162},292,{"file":145,"line":184,"context":162},302,{"file":145,"line":186,"context":162},303,[],[189,266],{"entryPoint":190,"graph":191,"unsanitizedCount":28,"severity":265},"freecontactformdotcomsettings (freecontactformdotcom.php:20)",{"nodes":192,"edges":253},[193,198,203,207,209,213,215,219,221,224,228,231,233,236,238,241,243,246,248,251],{"id":194,"type":195,"label":196,"file":145,"line":197},"n0","source","$_POST['email_address_setting']",32,{"id":199,"type":200,"label":201,"file":145,"line":197,"wp_function":202},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":204,"type":195,"label":205,"file":145,"line":206},"n2","$_POST['spam_question_setting']",38,{"id":208,"type":200,"label":201,"file":145,"line":206,"wp_function":202},"n3",{"id":210,"type":195,"label":211,"file":145,"line":212},"n4","$_POST['spam_answer_setting']",44,{"id":214,"type":200,"label":201,"file":145,"line":212,"wp_function":202},"n5",{"id":216,"type":195,"label":217,"file":145,"line":218},"n6","$_POST['thankyou_setting']",50,{"id":220,"type":200,"label":201,"file":145,"line":218,"wp_function":202},"n7",{"id":222,"type":195,"label":223,"file":145,"line":174},"n8","$_POST['Full_Name']",{"id":225,"type":200,"label":226,"file":145,"line":174,"wp_function":227},"n9","echo() [XSS]","echo",{"id":229,"type":195,"label":230,"file":145,"line":176},"n10","$_POST['Email_Address']",{"id":232,"type":200,"label":226,"file":145,"line":176,"wp_function":227},"n11",{"id":234,"type":195,"label":235,"file":145,"line":178},"n12","$_POST['Website']",{"id":237,"type":200,"label":226,"file":145,"line":178,"wp_function":227},"n13",{"id":239,"type":195,"label":240,"file":145,"line":180},"n14","$_POST['Subject']",{"id":242,"type":200,"label":226,"file":145,"line":180,"wp_function":227},"n15",{"id":244,"type":195,"label":245,"file":145,"line":182},"n16","$_POST['Your_Message']",{"id":247,"type":200,"label":226,"file":145,"line":182,"wp_function":227},"n17",{"id":249,"type":195,"label":250,"file":145,"line":186},"n18","$_POST['AntiSpam']",{"id":252,"type":200,"label":226,"file":145,"line":186,"wp_function":227},"n19",[254,256,257,258,259,260,261,262,263,264],{"from":194,"to":199,"sanitized":255},true,{"from":204,"to":208,"sanitized":255},{"from":210,"to":214,"sanitized":255},{"from":216,"to":220,"sanitized":255},{"from":222,"to":225,"sanitized":255},{"from":229,"to":232,"sanitized":255},{"from":234,"to":237,"sanitized":255},{"from":239,"to":242,"sanitized":255},{"from":244,"to":247,"sanitized":255},{"from":249,"to":252,"sanitized":255},"low",{"entryPoint":267,"graph":268,"unsanitizedCount":28,"severity":265},"\u003Cfreecontactformdotcom> (freecontactformdotcom.php:0)",{"nodes":269,"edges":290},[270,271,272,273,274,275,276,277,278,279,280,281,282,283,284,285,286,287,288,289],{"id":194,"type":195,"label":196,"file":145,"line":197},{"id":199,"type":200,"label":201,"file":145,"line":197,"wp_function":202},{"id":204,"type":195,"label":205,"file":145,"line":206},{"id":208,"type":200,"label":201,"file":145,"line":206,"wp_function":202},{"id":210,"type":195,"label":211,"file":145,"line":212},{"id":214,"type":200,"label":201,"file":145,"line":212,"wp_function":202},{"id":216,"type":195,"label":217,"file":145,"line":218},{"id":220,"type":200,"label":201,"file":145,"line":218,"wp_function":202},{"id":222,"type":195,"label":223,"file":145,"line":174},{"id":225,"type":200,"label":226,"file":145,"line":174,"wp_function":227},{"id":229,"type":195,"label":230,"file":145,"line":176},{"id":232,"type":200,"label":226,"file":145,"line":176,"wp_function":227},{"id":234,"type":195,"label":235,"file":145,"line":178},{"id":237,"type":200,"label":226,"file":145,"line":178,"wp_function":227},{"id":239,"type":195,"label":240,"file":145,"line":180},{"id":242,"type":200,"label":226,"file":145,"line":180,"wp_function":227},{"id":244,"type":195,"label":245,"file":145,"line":182},{"id":247,"type":200,"label":226,"file":145,"line":182,"wp_function":227},{"id":249,"type":195,"label":250,"file":145,"line":186},{"id":252,"type":200,"label":226,"file":145,"line":186,"wp_function":227},[291,292,293,294,295,296,297,298,299,300],{"from":194,"to":199,"sanitized":255},{"from":204,"to":208,"sanitized":255},{"from":210,"to":214,"sanitized":255},{"from":216,"to":220,"sanitized":255},{"from":222,"to":225,"sanitized":255},{"from":229,"to":232,"sanitized":255},{"from":234,"to":237,"sanitized":255},{"from":239,"to":242,"sanitized":255},{"from":244,"to":247,"sanitized":255},{"from":249,"to":252,"sanitized":255},{"summary":302,"deductions":303},"The \"freecontactformdotcom\" v1.2 plugin exhibits a mixed security posture. On the positive side, the plugin has no recorded vulnerabilities (CVEs) and demonstrates good practices by utilizing prepared statements for all its SQL queries and performing at least one capability check. The absence of external HTTP requests and file operations further reduces its potential attack surface in those areas. However, a significant concern arises from the 0% output escaping, meaning all 13 outputs are potentially vulnerable to cross-site scripting (XSS) attacks. While the attack surface is small with only one shortcode entry point and no unprotected AJAX or REST API routes, the lack of output sanitization is a critical weakness. The taint analysis also shows no critical or high severity unsanitized flows, which is encouraging, but this is overshadowed by the broad output escaping deficiency. The vulnerability history being clear is a positive sign, suggesting that past development may have been secure, but it does not mitigate current code deficiencies.",[304,307],{"reason":305,"points":306},"0% output escaping",7,{"reason":308,"points":309},"0 nonce checks",5,"2026-03-17T00:48:06.058Z",{"wat":312,"direct":320},{"assetPaths":313,"generatorPatterns":315,"scriptPaths":316,"versionParams":318},[314],"\u002Fwp-content\u002Fplugins\u002Ffreecontactformdotcom\u002Fstyle.css",[],[317],"\u002Fwp-content\u002Fplugins\u002Ffreecontactformdotcom\u002Ffreecontactformdotcom.php",[319],"freecontactformdotcom\u002Fstyle.css?ver=",{"cssClasses":321,"htmlComments":328,"htmlAttributes":329,"restEndpoints":342,"jsGlobals":343,"shortcodeOutput":351},[322,323,324,325,326,327],"wrap","icon32","form-table","regular-text","button-primary","clear",[],[330,331,332,333,334,335,336,337,338,339,340,341],"name=\"email_address_setting\"","name=\"spam_question_setting\"","name=\"spam_answer_setting\"","name=\"thankyou_setting\"","name=\"linkback_setting\"","value=\"Set\"","name=\"Full_Name\"","name=\"Email_Address\"","name=\"Subject\"","name=\"Website\"","name=\"Your_Message\"","name=\"AntiSpam\"",[],[344,345,346,347,348,349,350],"has_id","has_name","$$","$val","trim","fcfrequired","validate",[352],"[contact_form_here]",{"error":255,"url":354,"statusCode":355,"statusMessage":356,"message":356},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Ffreecontactformdotcom\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":28,"versions":358},[]]