WP-Safety

Integration for Zoho CRM and Zoho Bigin – Contact Form 7, WPForms, Elementor, Gravity Forms and More Security & Risk Analysis

wordpress.org/plugins/integrate-any-form-with-zoho-crm

Connect Zoho CRM and Zoho Bigin. Create Leads, Contacts, Accounts, Deals, and Pipelines from any form submission.

60 active installs v1.0.15 PHP 7.0+ WP 5.2+ Updated Mar 10, 2026
contact-form-7-zohogravity-forms-zohowpforms-zohozoho-biginzoho-crm
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Integration for Zoho CRM and Zoho Bigin – Contact Form 7, WPForms, Elementor, Gravity Forms and More Safe to Use in 2026?

Generally Safe

Score 100/100

Integration for Zoho CRM and Zoho Bigin – Contact Form 7, WPForms, Elementor, Gravity Forms and More has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The "integrate-any-form-with-zoho-crm" plugin v1.0.15 exhibits a generally strong security posture with several good practices in place. The absence of any recorded vulnerabilities, including critical or high severity ones, is a significant positive indicator. The plugin also demonstrates a high level of output escaping (98%) and a substantial number of nonce checks (18), which are crucial for preventing cross-site scripting and CSRF attacks. The low percentage of SQL queries not using prepared statements (45% unsanitized) is also a commendable aspect, reducing the risk of SQL injection vulnerabilities.

However, the static analysis reveals potential areas of concern. The presence of 8 flows with unsanitized paths in the taint analysis, even without critical severity, warrants attention as these could potentially be exploited under certain conditions. Furthermore, the lack of capability checks on its AJAX handlers is a notable weakness. While there are no unprotected entry points identified, relying solely on nonce checks for AJAX handlers can be insufficient if nonces are compromised or if there's an absence of robust authorization logic. The plugin's extensive use of external HTTP requests (31) also introduces an indirect attack surface, as vulnerabilities in external services could potentially impact the plugin's functionality or security.

In conclusion, the plugin has a solid foundation for security, primarily due to its clean vulnerability history and good practices in output escaping and nonce implementation. Nevertheless, the identified unsanitized paths in taint analysis and the absence of capability checks on AJAX handlers represent tangible risks that should be addressed to further harden its security posture. The strong historical record of no vulnerabilities suggests that the developers are responsive to security, but continuous vigilance and code review are recommended.

Key Concerns

  • Flows with unsanitized paths (taint analysis)
  • Missing capability checks on AJAX handlers
  • SQL queries not using prepared statements (45%)
Vulnerabilities
None known

Integration for Zoho CRM and Zoho Bigin – Contact Form 7, WPForms, Elementor, Gravity Forms and More Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Integration for Zoho CRM and Zoho Bigin – Contact Form 7, WPForms, Elementor, Gravity Forms and More Release Timeline

v1.0.15Current
v1.0.14
v1.0.13
v1.0.12
v1.0.11
v1.0.10
v1.0.9
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Code Analysis
Analyzed Mar 16, 2026

Integration for Zoho CRM and Zoho Bigin – Contact Form 7, WPForms, Elementor, Gravity Forms and More Code Analysis

Dangerous Functions
0
Raw SQL Queries
10
12 prepared
Unescaped Output
7
358 escaped
Nonce Checks
18
Capability Checks
0
File Operations
0
External Requests
31
Bundled Libraries
0

SQL Query Safety

55% prepared22 total queries

Output Escaping

98% escaped365 total outputs
Data Flows · Security
8 unsanitized

Data Flow Analysis

12 flows8 with unsanitized paths
<zoho-account-action> (src\product\zoho-account-action.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Integration for Zoho CRM and Zoho Bigin – Contact Form 7, WPForms, Elementor, Gravity Forms and More Attack Surface

Entry Points4
Unprotected0

AJAX Handlers 4

authwp_ajax_iafwzc_review_actionincludes\function\review.php:50
authwp_ajax_IAFWZC_Error_Log_show_actionsrc\product\zoho-errorlog-action.php:96
authwp_ajax_iafwzc_handle_requestsrc\product\zoho-setup-action.php:203
authwp_ajax_iafwzc_integration_statussrc\product\zoho-setup-action.php:241
WordPress Hooks 17
actionadmin_menuincludes\admin\admin.php:10
actionadmin_enqueue_scriptsincludes\admin\admin.php:27
actionadmin_post_iafwzc_process_requestincludes\function\common-actions.php:40
actionadmin_noticesincludes\function\review.php:8
actionwpcf7_mail_sentsrc\forms\submit-action.php:51
actionwpforms_process_completesrc\forms\submit-action.php:54
actiongform_after_submissionsrc\forms\submit-action.php:57
actionfrm_after_create_entrysrc\forms\submit-action.php:60
actionelementor_pro/forms/new_recordsrc\forms\submit-action.php:63
actionadmin_post_iafwzc_authenticate_zoho_crmsrc\product\zoho-account-action.php:9
actionadmin_initsrc\product\zoho-account-action.php:77
actionadmin_initsrc\product\zoho-account-action.php:239
actionadmin_initsrc\product\zoho-errorlog-action.php:26
actionadmin_initsrc\product\zoho-errorlog-action.php:54
actionadmin_initsrc\product\zoho-errorlog-action.php:177
actionadmin_post_iafwzc_delete_data_confirmsrc\product\zoho-settings-action.php:80
actionadmin_initsrc\product\zoho-setup-action.php:207
Maintenance & Trust

Integration for Zoho CRM and Zoho Bigin – Contact Form 7, WPForms, Elementor, Gravity Forms and More Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 10, 2026
PHP min version7.0
Downloads2K

Community Trust

Rating100/100
Number of ratings3
Active installs60
Alternatives

Integration for Zoho CRM and Zoho Bigin – Contact Form 7, WPForms, Elementor, Gravity Forms and More Alternatives

WP Zoho for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms – CRM, Bigin

WP Zoho for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms – CRM, Bigin

cf7-zoho

A
90

Send Contact Form 7, WPforms, Elementor, Formidable, Ninja Forms and many other contact form submissions to zoho CRM and Bigin.

3K 5 CVEs
Centous Integration for Contact Form 7 and Zoho

Centous Integration for Contact Form 7 and Zoho

centous-integration-for-contact-form-7-and-zoho

A
100

Integration plugin for Contact Form 7 with Zoho CRM and Zoho Bigin.

0 No CVEs
AFI – The Easiest Integration Plugin

AFI – The Easiest Integration Plugin

advanced-form-integration

A
95

Connect any WordPress form or event to 200+ apps — no code. Send leads, orders, and signups to your CRM, email, or sheets in minutes.

10K 9 CVEs
Zoho CRM Lead Magnet

Zoho CRM Lead Magnet

zoho-crm-forms

C
67

Websites are one of the most important sources of leads for your business.

3K 1 unpatched
Zoho Integration for WordPress

Zoho Integration for WordPress

wp-zoho-crm

A
92

Elevate Your Leads: Automate with Smackcoders' Zoho WordPress Integration. An easy, automated and advanced Zoho Wordpress web form generator to c &hellip;

200 No CVEs
Developer Profile

Integration for Zoho CRM and Zoho Bigin – Contact Form 7, WPForms, Elementor, Gravity Forms and More Developer Profile

Plugcrux

10 plugins · 160 total installs

93
trust score
Avg Security Score
99/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Integration for Zoho CRM and Zoho Bigin – Contact Form 7, WPForms, Elementor, Gravity Forms and More

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/integrate-any-form-with-zoho-crm/includes/css/accounts.css/wp-content/plugins/integrate-any-form-with-zoho-crm/includes/css/admin.css/wp-content/plugins/integrate-any-form-with-zoho-crm/includes/css/common.css/wp-content/plugins/integrate-any-form-with-zoho-crm/includes/js/accounts.js/wp-content/plugins/integrate-any-form-with-zoho-crm/includes/js/common.js
Script Paths
/wp-content/plugins/integrate-any-form-with-zoho-crm/includes/js/accounts.js/wp-content/plugins/integrate-any-form-with-zoho-crm/includes/js/common.js
Version Parameters
integrate-any-form-with-zoho-crm/includes/css/accounts.css?ver=integrate-any-form-with-zoho-crm/includes/css/admin.css?ver=integrate-any-form-with-zoho-crm/includes/css/common.css?ver=integrate-any-form-with-zoho-crm/includes/js/accounts.js?ver=integrate-any-form-with-zoho-crm/includes/js/common.js?ver=

HTML / DOM Fingerprints

CSS Classes
iafwzc-content-accountsiafwzc-tab-contentiafwzc-span-headeriafwzc-help-icon-wrapperiafwzc-help-iconiafwzc-help-tooltipiafwzc-account-formiafwzc-account-form-input+2 more
HTML Comments
Exit if accessed directly to ensure security.List of class instances for table creationHelper function to create tables for each classMultisite handling: loop through all sites in the network+31 more
Data Attributes
data-tab-target="#iafwzc-content-accounts"data-tab-target="#iafwzc-content-setup"data-tab-target="#iafwzc-content-logs"data-tab-target="#iafwzc-content-help"
JS Globals
iafwzc_accountDBInstanceiafwzc_account_countiafwzc_admin_url
FAQ

Frequently Asked Questions about Integration for Zoho CRM and Zoho Bigin – Contact Form 7, WPForms, Elementor, Gravity Forms and More