WP-Safety

Mail Manager for WPForms ( wpforms entries ) – Database for wpforms Security & Risk Analysis

wordpress.org/plugins/mail-manager-wpforms

Securely store and organize WPForms submissions with ease. Save and manage WPForms entries or mail (WPForms database) efficiently with this plugin.

10 active installs v1.1.2 PHP 7.4+ WP 6.5+ Updated Jun 17, 2025
wpformswpforms-databasewpforms-save-mailwpforms-stylewpforms-entries
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Mail Manager for WPForms ( wpforms entries ) – Database for wpforms Safe to Use in 2026?

Generally Safe

Score 100/100

Mail Manager for WPForms ( wpforms entries ) – Database for wpforms has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11mo ago
Risk Assessment

The mail-manager-wpforms plugin v1.1.2 exhibits a mixed security posture. On the positive side, it demonstrates excellent practices regarding SQL queries, using prepared statements exclusively, and all output appears to be properly escaped, significantly reducing the risk of common injection and XSS vulnerabilities. Furthermore, the absence of known CVEs and a clean vulnerability history suggests a generally well-maintained codebase. However, significant concerns arise from the attack surface. Two AJAX handlers lack authentication checks, and while there are no REST API routes without permission callbacks, the presence of unprotected AJAX endpoints presents a clear risk. The taint analysis reveals five high-severity flows with unsanitized paths, which, despite not being classified as 'critical', warrant immediate attention as they could potentially be exploited if user-supplied data is not adequately validated before being processed in these flows. The plugin's strengths lie in its robust data handling and lack of historical vulnerabilities, but the unprotected entry points and high-severity taint flows are considerable weaknesses that could be exploited.

Key Concerns

  • 2 AJAX handlers without auth checks
  • 5 high severity taint flows with unsanitized paths
Vulnerabilities
None known

Mail Manager for WPForms ( wpforms entries ) – Database for wpforms Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Mail Manager for WPForms ( wpforms entries ) – Database for wpforms Release Timeline

v1.1.2Current
v1.0.1
v1.0.0
Code Analysis
Analyzed Apr 16, 2026

Mail Manager for WPForms ( wpforms entries ) – Database for wpforms Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
25 prepared
Unescaped Output
0
79 escaped
Nonce Checks
5
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared25 total queries

Output Escaping

100% escaped79 total outputs
Data Flows · Security
5 unsanitized

Data Flow Analysis

7 flows5 with unsanitized paths
extra_tablenav (admin/class-form-entries-table.php:397)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Mail Manager for WPForms ( wpforms entries ) – Database for wpforms Attack Surface

Entry Points3
Unprotected2

AJAX Handlers 2

authwp_ajax_mmwpf_review_dismissincludes/class-manager.php:149
authwp_ajax_mmwpf_save_entryincludes/class-manager.php:203

REST API Routes 1

GET/wp-json/wp/v2/mmwpf-forms-data/admin/class-admin.php:841
WordPress Hooks 24
actionplugins_loadedincludes/class-manager.php:128
actionadmin_noticesincludes/class-manager.php:145
actionadmin_noticesincludes/class-manager.php:147
actioncurrent_screenincludes/class-manager.php:151
actionadmin_enqueue_scriptsincludes/class-manager.php:159
actionwp_enqueue_scriptsincludes/class-manager.php:160
actionadmin_enqueue_scriptsincludes/class-manager.php:162
actionadmin_enqueue_scriptsincludes/class-manager.php:163
filtermmwpf_default_settingsincludes/class-manager.php:165
actionadmin_initincludes/class-manager.php:166
actionrest_api_initincludes/class-manager.php:167
actionadmin_menuincludes/class-manager.php:181
actionrest_api_initincludes/class-manager.php:183
filterscreen_settingsincludes/class-manager.php:188
actionadmin_headincludes/class-manager.php:189
actionadmin_initincludes/class-manager.php:196
filtermmwpf_add_entries_column_nameincludes/class-manager.php:200
filtermmwpf_add_entries_actionincludes/class-manager.php:206
actionadmin_initincludes/class-manager.php:209
actionadmin_initincludes/class-manager.php:210
actionwpforms_process_entry_saveincludes/class-manager.php:213
filteradmin_footer_textincludes/class-notice.php:191
actioninitmail-manager-wpf.php:74
filterplugin_action_linksmail-manager-wpf.php:85
Maintenance & Trust

Mail Manager for WPForms ( wpforms entries ) – Database for wpforms Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedJun 17, 2025
PHP min version7.4
Downloads584

Community Trust

Rating100/100
Number of ratings1
Active installs10
Alternatives

Mail Manager for WPForms ( wpforms entries ) – Database for wpforms Alternatives

Database for Contact Form 7, WPforms, Elementor forms

Database for Contact Form 7, WPforms, Elementor forms

contact-form-entries

B
76

Saves Contact Form 7, WPforms,Elementor Forms, CRM Perks Forms and many other contact form submissions to database.

70K 14 CVEs
Utimate Kit ( Styler ) for WPForms

Utimate Kit ( Styler ) for WPForms

styler-for-wpforms

A
100

Ultimate Kit for WPForms makes the task of designing WPForms an easy one.

20K No CVEs
WPSyncSheets For WPForms – Google Sheets Connector for WPForms & Real‑Time Data Export

WPSyncSheets For WPForms – Google Sheets Connector for WPForms & Real‑Time Data Export

wpsyncsheets-wpforms

A
99

Connect WPForms to Google Sheets and automatically sync form entries in real-time. Eliminate manual data entry and simplify your workflow.

300 1 CVE
EntryDashboard – Database Addon & Sync for WPForms, CF7, Elementor & More

EntryDashboard – Database Addon & Sync for WPForms, CF7, Elementor & More

entries-manager

A
100

Saves, manages, and sync all form submissions to your WordPress database. The most powerful Database Addon for WPForms, Contact Form 7, and Elementor …

40 No CVEs
Views for Elementor Forms – Display & Edit Submissions on your site frontend

Views for Elementor Forms – Display & Edit Submissions on your site frontend

views-for-elementor-forms

A
100

Display and edit your Elementor Forms entries directly on the frontend of your website.

40 No CVEs
Developer Profile

Mail Manager for WPForms ( wpforms entries ) – Database for wpforms Developer Profile

Md Rashidul Azam (Nishan)

2 plugins · 20 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Mail Manager for WPForms ( wpforms entries ) – Database for wpforms

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/mail-manager-wpforms/assets/admin/css/admin.css/wp-content/plugins/mail-manager-wpforms/assets/admin/js/admin.js/wp-content/plugins/mail-manager-wpforms/assets/public/css/public.css/wp-content/plugins/mail-manager-wpforms/assets/public/js/public.js/wp-content/plugins/mail-manager-wpforms/build/index.css/wp-content/plugins/mail-manager-wpforms/build/index.js
Script Paths
jquery
Version Parameters
mail-manager-wpforms/assets/admin/css/admin.css?ver=mail-manager-wpforms/assets/admin/js/admin.js?ver=mail-manager-wpforms/assets/public/css/public.css?ver=mail-manager-wpforms/assets/public/js/public.js?ver=mail-manager-wpforms/build/index.css?ver=mail-manager-wpforms/build/index.js?ver=

HTML / DOM Fingerprints

JS Globals
mmwpf_ajax_obj
FAQ

Frequently Asked Questions about Mail Manager for WPForms ( wpforms entries ) – Database for wpforms