Inazo's flamingo automatically delete old messages Security & Risk Analysis
wordpress.org/plugins/inazo-flamingo-automatically-delete-old-messagesThis plugin help you to auto removed all information stored by flamingo.
Is Inazo's flamingo automatically delete old messages Safe to Use in 2026?
Generally Safe
Score 92/100Inazo's flamingo automatically delete old messages has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The plugin 'inazo-flamingo-automatically-delete-old-messages' v1.2 exhibits a generally positive security posture, with no reported vulnerabilities or critical code signals. The use of prepared statements for all SQL queries is a strong indicator of secure database interaction. The presence of a nonce check, although only one, suggests an awareness of potential cross-site request forgery (CSRF) risks. Furthermore, the absence of external HTTP requests and file operations limits the plugin's exposure to external attack vectors.
However, a significant concern arises from the complete lack of output escaping. This indicates that any data processed or displayed by the plugin could be vulnerable to cross-site scripting (XSS) attacks. While taint analysis did not reveal any unsanitized paths, the 0% proper output escaping is a glaring weakness. The plugin also lacks capability checks, which, combined with other entry points like cron events, could potentially be exploited if malicious data is introduced.
Given the clean vulnerability history, the plugin has historically been secure. However, the static analysis reveals a specific and serious flaw in output handling that needs immediate attention. The plugin's strengths lie in its database practices and limited external interactions, but the output escaping deficiency presents a tangible risk that must be addressed.
Key Concerns
- Output is not properly escaped (0% escaped)
- No capability checks found
Inazo's flamingo automatically delete old messages Security Vulnerabilities
Inazo's flamingo automatically delete old messages Code Analysis
SQL Query Safety
Output Escaping
Inazo's flamingo automatically delete old messages Attack Surface
WordPress Hooks 2
Scheduled Events 1
Maintenance & Trust
Inazo's flamingo automatically delete old messages Maintenance & Trust
Maintenance Signals
Community Trust
Inazo's flamingo automatically delete old messages Alternatives
Image CAPTCHA for Contact Form 7 and WPForms by HookAndHook (DSGVO/GDPR)
contact-form-7-image-captcha
Adds an Image CAPTCHA to Contact Form 7 and WPForms, GDPR ready, perfect WPForms or Contact Form 7 Spam Protection Image CAPTCHA, adds a honeypot
Double Opt-In for Contact Form 7 & Avada – Secure, GDPR-Compliant Email Verification
double-opt-in
Protect your forms with GDPR-compliant Double Opt-In. Ensure valid emails, prevent fake signups, and stay compliant with Contact Form 7 and Avada.
User Role for Flamingo
user-role-for-flamingo
Configure special user role to access the flamingo contacts and messages wihtout admin permissions.
AC Advanced Flamingo Settings
ac-advanced-flamingo-settings
AC Advanced Flamingo Settings enhances and extends the functionality of the CF7 Flamingo plugin by adding customization options, import/export tools, …
Easy Panel for Contact Form 7
easy-panel-for-contact-form-7
Contact form submissions analytics dashboard. Understand all your submission statistics at a glance. Built with CF7 & Flamingo.
Inazo's flamingo automatically delete old messages Developer Profile
3 plugins · 4K total installs
How We Detect Inazo's flamingo automatically delete old messages
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
HTML / DOM Fingerprints
<!-- on est sur la sauvegarde de la publicité --><!-- Suppression des contacts --><!-- Suppression des inbound --><!-- Suppression des outbound -->+2 more