Gravity Forms Janrain Add-on Security & Risk Analysis
wordpress.org/plugins/gravity-forms-janrain-add-onIntegrate Gravity Forms with Janrain Engage social login to pre-fill forms.
Is Gravity Forms Janrain Add-on Safe to Use in 2026?
Generally Safe
Score 85/100Gravity Forms Janrain Add-on has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The Gravity Forms Janrain Add-on v0.3 exhibits a concerning security posture primarily due to its unprotected entry points and unsanitized data flows. While the plugin demonstrates good practices by exclusively using prepared statements for SQL and avoiding dangerous functions, these strengths are overshadowed by critical vulnerabilities identified in the taint analysis. The presence of two 'flows with unsanitized paths' classified as 'High severity' in the taint analysis directly points to potential security risks where user-supplied data could be improperly handled, leading to unintended consequences or even exploitation. Furthermore, the plugin exposes two AJAX handlers without any authentication checks, creating a significant attack surface that could be leveraged by unauthenticated users. The absence of any recorded vulnerabilities in its history is a positive sign, suggesting a lack of past exploits or perhaps limited adoption and auditing. However, this historical data should not alleviate concerns about the present static analysis findings, which highlight immediate and actionable risks.
Key Concerns
- AJAX handlers without auth checks
- High severity taint flows (2)
- Unsanitized paths in taint analysis (2)
- Missing capability checks
- Outputs not properly escaped (33%)
Gravity Forms Janrain Add-on Security Vulnerabilities
Gravity Forms Janrain Add-on Code Analysis
Output Escaping
Data Flow Analysis
Gravity Forms Janrain Add-on Attack Surface
AJAX Handlers 2
WordPress Hooks 7
Maintenance & Trust
Gravity Forms Janrain Add-on Maintenance & Trust
Maintenance Signals
Community Trust
Gravity Forms Janrain Add-on Alternatives
WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More
wpforms-lite
The best WordPress contact form plugin. Drag & Drop form builder to create beautiful contact forms, payment forms, & other custom forms.
Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder
fluentform
Get a fast contact form plugin. Create advanced forms using drag and drop form builder with all smart features.
Forminator Forms – Contact Form, Payment Form & Custom Form Builder
forminator
Best WordPress form builder plugin. Create contact forms, payment forms & order forms with 1000+ integrations.
Ninja Forms – The Contact Form Builder That Grows With You
ninja-forms
The 100% beginner friendly WordPress form builder. Drag & drop form fields to build beautiful, professional contact forms in minutes.
SureForms – Contact Form, Payment Form & Other Custom Form Builder
sureforms
The most beginner-friendly, AI Form Builder for WordPress to create contact forms, payment forms & other custom forms with advanced features, with …
Gravity Forms Janrain Add-on Developer Profile
3 plugins · 50 total installs
How We Detect Gravity Forms Janrain Add-on
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/gravity-forms-janrain-add-on/settings.jshttps://rpxnow.com/js/lib/janrain/engage.jshttp://widget-cdn.rpxnow.com/js/lib/janrain/engage.jsHTML / DOM Fingerprints
janrain-provider-icon-32janrain-provider-icon-gfield_admin_iconsgfield_admin_header_titlefield_delete_iconedit_icon_collapsedjanrainEngageEmbedCopyright 2012-2013 Janrain, Inc.This program is free software: you can redistribute it and/or modifyunder the terms of the GNU General Public License as published bythe Free Software Foundation, either version 3 of the License, or+21 moresocialPrefillsocialPrefillWithjanrain_engage_prefillsocial_prefilljanrainJANRAIN_GFORMS_DIRECTORYengage-integration-settings