WP-Safety

Integration of Zoho CRM and Fluent Form Security & Risk Analysis

wordpress.org/plugins/integration-of-zoho-crm-and-fluent-form

Visit plugin's website

10 active installs v1.0.8 PHP 5.6+ WP 5.0+ Updated Nov 16, 2025
apifluent-formsleadszohozoho-crm
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Integration of Zoho CRM and Fluent Form Safe to Use in 2026?

Generally Safe

Score 100/100

Integration of Zoho CRM and Fluent Form has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6mo ago
Risk Assessment

The integration-of-zoho-crm-and-fluent-form plugin v1.0.8 exhibits a mixed security posture. On the positive side, the code demonstrates good practices by exclusively using prepared statements for all SQL queries and ensuring all output is properly escaped. Furthermore, there is no known vulnerability history (CVEs) for this plugin, which suggests a relatively stable and potentially well-maintained codebase.

However, a significant concern arises from the static analysis, specifically the presence of one REST API route that lacks permission callbacks. This constitutes an unprotected entry point into the plugin's functionality. While there are no identified dangerous functions or unsanitized taint flows, this unprotected endpoint could be exploited by unauthenticated users to trigger unintended actions or access sensitive data if the underlying logic is not sufficiently secured.

In conclusion, while the plugin avoids common pitfalls like raw SQL and unescaped output, the unprotected REST API route represents a clear security weakness. The lack of historical vulnerabilities is a positive indicator, but it does not negate the risk posed by the identified unprotected entry point. Further investigation into the functionality exposed by this REST API route is recommended.

Key Concerns

  • Unprotected REST API route without permission callback
Vulnerabilities
None known

Integration of Zoho CRM and Fluent Form Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Integration of Zoho CRM and Fluent Form Release Timeline

v1.0.8Current
v1.0.7
v1.0.6
v1.0.5
Code Analysis
Analyzed Apr 16, 2026

Integration of Zoho CRM and Fluent Form Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
13 prepared
Unescaped Output
0
24 escaped
Nonce Checks
4
Capability Checks
2
File Operations
5
External Requests
3
Bundled Libraries
0

SQL Query Safety

100% prepared13 total queries

Output Escaping

100% escaped24 total outputs
Attack Surface
1 unprotected

Integration of Zoho CRM and Fluent Form Attack Surface

Entry Points1
Unprotected1

REST API Routes 1

GET/wp-json/bitffzc/redirectincludes/Integration/Integrations.php:211
WordPress Hooks 12
actionin_admin_headerincludes/Admin/Admin_Bar.php:16
actionadmin_menuincludes/Admin/Admin_Bar.php:17
actionadmin_enqueue_scriptsincludes/Admin/Admin_Bar.php:18
filterscript_loader_tagincludes/Admin/Admin_Bar.php:19
actionfluentform_submission_insertedincludes/Admin/FF/Hooks.php:16
actionbitffzc_activationincludes/Core/Util/Activation.php:16
actionbitffzc_deactivationincludes/Core/Util/Deactivation.php:21
actionbitffzc_uninstallincludes/Core/Util/Uninstallation.php:20
actionrest_api_initincludes/Integration/Integrations.php:44
filterbitffzc_addRelatedListincludes/Integration/ZohoCRM/ZohoCRMHandler.php:337
actionplugins_loadedincludes/Plugin.php:37
actioninitincludes/Plugin.php:48
Maintenance & Trust

Integration of Zoho CRM and Fluent Form Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedNov 16, 2025
PHP min version5.6
Downloads2K

Community Trust

Rating80/100
Number of ratings1
Active installs10
Alternatives

Integration of Zoho CRM and Fluent Form Alternatives

Integration of Zoho CRM and Gravity Forms

Integration of Zoho CRM and Gravity Forms

integration-of-zoho-crm-and-gravity-forms

A
85

Visit plugin's website

20 No CVEs
AFI – The Easiest Integration Plugin

AFI – The Easiest Integration Plugin

advanced-form-integration

A
95

Connect any WordPress form or event to 200+ apps — no code. Send leads, orders, and signups to your CRM, email, or sheets in minutes.

10K 9 CVEs
WP Zoho for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms – CRM, Bigin

WP Zoho for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms – CRM, Bigin

cf7-zoho

A
90

Send Contact Form 7, WPforms, Elementor, Formidable, Ninja Forms and many other contact form submissions to zoho CRM and Bigin.

3K 5 CVEs
Zoho CRM Lead Magnet

Zoho CRM Lead Magnet

zoho-crm-forms

C
67

Websites are one of the most important sources of leads for your business.

3K 1 unpatched
WP Gravity Forms Zoho CRM and Bigin

WP Gravity Forms Zoho CRM and Bigin

gf-zoho

A
96

Gravity Forms Zoho CRM Add-On Sends Gravity Forms entries to Zoho CRM and Bigin.

500 3 CVEs
Developer Profile

Integration of Zoho CRM and Fluent Form Developer Profile

formsintegrations

12 plugins · 1K total installs

88
trust score
Avg Security Score
92/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Integration of Zoho CRM and Fluent Form

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/integration-of-zoho-crm-and-fluent-form/assets/index-1.0.8.js
Script Paths
/wp-content/plugins/integration-of-zoho-crm-and-fluent-form/includes/Admin/Admin_Bar.php
Version Parameters
index-1.0.8.js?ver=

HTML / DOM Fingerprints

Data Attributes
data-name="Layer 1"class="cls-2"
JS Globals
window.bitffzc
REST Endpoints
/wp-json/bitffzc/redirect
FAQ

Frequently Asked Questions about Integration of Zoho CRM and Fluent Form