Simple Contact Form and Multi Step Contact Form Security & Risk Analysis
wordpress.org/plugins/js-contact-formSimple Contact Form and Multi Step Contact Form with Attachment Support, Customizable Labels, Custom CSS, WP Mail SMTP Support, and Improved Design.
Is Simple Contact Form and Multi Step Contact Form Safe to Use in 2026?
Generally Safe
Score 92/100Simple Contact Form and Multi Step Contact Form has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "js-contact-form" plugin v1.2 exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices by not utilizing dangerous functions, all SQL queries are prepared, and output is generally well-escaped. It also has no recorded vulnerabilities or CVEs, suggesting a history of stable and secure development. However, significant concerns arise from its attack surface. The plugin exposes two AJAX handlers without any authentication or capability checks, creating direct entry points for potential malicious activity. This lack of authorization on AJAX endpoints is a critical weakness that could allow unauthorized users to trigger plugin functionality. While taint analysis did not reveal any active flows, the unprotected AJAX handlers present a significant risk that could be exploited if vulnerable logic were to be introduced in the future.
Key Concerns
- AJAX handlers without authentication checks
- AJAX handlers without capability checks
Simple Contact Form and Multi Step Contact Form Security Vulnerabilities
Simple Contact Form and Multi Step Contact Form Code Analysis
Output Escaping
Simple Contact Form and Multi Step Contact Form Attack Surface
AJAX Handlers 2
Shortcodes 2
WordPress Hooks 8
Maintenance & Trust
Simple Contact Form and Multi Step Contact Form Maintenance & Trust
Maintenance Signals
Community Trust
Simple Contact Form and Multi Step Contact Form Alternatives
Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder
fluentform
Get a fast contact form plugin. Create advanced forms using drag and drop form builder with all smart features.
Ultra Addons for Contact Form 7
ultimate-addons-for-contact-form-7
50+ Essential Addons for Contact Form 7 - Conditional Fields, Multi Step, Redirection, Columns, WooCommerce, Mailchimp & more
Form Popup Maker for WPForms, Contact Form 7 and Many other Forms
wpb-form-popup
WPB Popup Form WordPress plugin will help you to create effective form popups. WPForms Popup form, Mailchimp popup, Opt-in, login popup.
The Innovative Form Builder – IvyForms
ivyforms
The most innovative WordPress Form Builder plugin. Build awesome contact, order, registration, custom forms, and more in minutes.
FormGlut — Contact, Newsletter & Multi-step Form Builder
formglut
User friendly, Lightweight, Drag & Drop form builder to create your WordPress Forms
Simple Contact Form and Multi Step Contact Form Developer Profile
9 plugins · 550 total installs
How We Detect Simple Contact Form and Multi Step Contact Form
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/js-contact-form/js/form-validation.js/wp-content/plugins/js-contact-form/js/script.jsjs-contact-form/js/form-validation.js?ver=js-contact-form/js/script.js?ver=HTML / DOM Fingerprints
ecmt-creditecmt-credit-barecmt-subheadingwp-ecmt-social-iconssocial-iconwhatsapp-iconfacebook-iconlinkedin-icon+10 moredata-id[contact_form]