Does Gravity Forms Email Blacklist have any unpatched vulnerabilities?

No. All known vulnerabilities in Gravity Forms Email Blacklist have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Gravity Forms Email Blacklist compatible with WordPress 6.7.5?

According to WordPress.org data, Gravity Forms Email Blacklist 2.6.2 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

How often is Gravity Forms Email Blacklist updated?

Gravity Forms Email Blacklist was last updated on Feb 20, 2025. Frequent updates are generally a positive security signal.

What is Gravity Forms Email Blacklist's security score?

Gravity Forms Email Blacklist has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Gravity Forms Email Blacklist Security & Risk Analysis

wordpress.org/plugins/gravity-forms-email-blacklist

Add-on for Gravity Forms to create a Blacklisting of specific emails or domains for the Email input field to throw a validation error or mark as spam.

10K active installs v2.6.2 PHP + WP 3.8+ Updated Feb 20, 2025

blacklistblock-emailemail-blacklistgravity-forms

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Gravity Forms Email Blacklist Safe to Use in 2026?

Generally Safe

Score 92/100

Gravity Forms Email Blacklist has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The static analysis of gravity-forms-email-blacklist v2.6.2 reveals a generally strong security posture. The plugin demonstrates excellent adherence to secure coding practices by having no dangerous functions, 100% of SQL queries using prepared statements, and all identified outputs being properly escaped. Furthermore, the complete absence of known CVEs and a clean vulnerability history suggest a mature and well-maintained codebase. The attack surface is also remarkably small, with no entry points identified that lack authentication or permission checks.

Despite these positive indicators, a few areas warrant attention. The presence of a file operation without explicit context in the static analysis results raises a minor concern, as file operations can sometimes be vectors for manipulation if not handled carefully. The absence of nonce checks and capability checks, while mitigated by the zero attack surface, could become a concern if the plugin's functionality were to evolve and introduce new entry points.

In conclusion, gravity-forms-email-blacklist v2.6.2 appears to be a secure plugin with a strong emphasis on preventing common web vulnerabilities. The lack of vulnerabilities in its history and the clean static analysis are significant strengths. The few areas that could be flagged are minor and do not represent immediate critical risks given the current analysis, but they highlight areas for continued vigilance.

Key Concerns

File operation present
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Gravity Forms Email Blacklist Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Gravity Forms Email Blacklist Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped4 total outputs

Attack Surface

Gravity Forms Email Blacklist Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 9

actiongform_loadedgf-emailblacklist.php:17

actioninitgf-emailblacklist.php:54

actiongform_editor_jsincludes\class-gfemailblacklist.php:90

actiongform_field_advanced_settingsincludes\class-gfemailblacklist.php:91

filtergform_tooltipsincludes\class-gfemailblacklist.php:92

filtergform_validationincludes\class-gfemailblacklist.php:100

filtergf_blacklist_is_validincludes\class-gfemailblacklist.php:101

filtergform_entry_is_spamincludes\class-gfemailblacklist.php:102

filtergf_blacklist_is_spamincludes\class-gfemailblacklist.php:103

Maintenance & Trust

Gravity Forms Email Blacklist Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedFeb 20, 2025

PHP min version

Downloads101K

Community Trust

Rating86/100

Number of ratings15

Active installs10K

Alternatives

Gravity Forms Email Blacklist Alternatives

Gravity Forms Block Email Domains

gf-block-email-domains

Easily set a list of email domains to block on email fields in Gravity Forms.

1K No CVEs

Email Blacklist For Elementor Forms

email-blacklist-for-elementor-forms

Adds a text area control called "Blacklist" to the Elementor Forms control. Blocks outgoing emails if they match with any on the blacklist.

1K No CVEs

CM E-Mail Blacklist – Simple email filtering for safer registration

cm-email-blacklist

Block unwanted email registrations on your site with this email blacklist plugin. Protect your site by preventing spam sign-ups.

800 3 CVEs

Contact Form 7 – Blacklist Unwanted Email

block-email-cf7

This is a free add-on plugin for contact form 7, which validates the email field and restrict unwanted email submission as well as allowed only busine …

400 No CVEs

Advanced Email Filter for Elementor Forms

advanced-email-filter-for-elementor-forms

100

Enhance Elementor Pro Forms with advanced email filtering capabilities including global blocklists/whitelist and per-form controls.

100 No CVEs

Developer Profile

Gravity Forms Email Blacklist Developer Profile

CrossPeak

3 plugins · 14K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

1614 days

View full developer profile

Detection Fingerprints

How We Detect Gravity Forms Email Blacklist

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ