[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f-wu67QK00or9nMpUc326jSXgnXnf0hk8d2OmWNm5tkc":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":37,"analysis":138,"fingerprints":213},"mamurjor-simple-contact-form","mamurjor simple contact form","1.0.0","mamurjor","https:\u002F\u002Fprofiles.wordpress.org\u002Fmamurjor\u002F","\u003Cp>Just copy and paste this shortcode [mamurjor_contact_admin_without_mail] [mamurjor_contact_admin_mail]\u003C\u002Fp>\n\u003Cp>A few notes about the sections above:\u003C\u002Fp>\n\u003Cp>mamurjor\u003C\u002Fp>\n\u003Cpre>\u003Ccode>Easy to use contact form\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>Mamurjor Info\u003C\u002Fh3>\n\u003Cp>Mamurjor IT Institute\u003C\u002Fp>\n\u003Ch3>Mamurjor Simple Contact Form Feature\u003C\u002Fh3>\n\u003Cp>Ordered list:\u003C\u002Fp>\n\u003Col>\n\u003Cli>simple contact form \u003C\u002Fli>\n\u003Cli>contact info send to admin mail\u003C\u002Fli>\n\u003Cli>contact info show in admin panel \u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Unordered list:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add Result\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Search Result\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Just copy and paste this shortcode [mamurjor_contact_admin_without_mail] [mamurjor_contact_admin_mail]",0,901,"","4.9.29","3.0.1","7.0",[18,19,20,21,22],"admin","contact","form","info","show","http:\u002F\u002Fplugin.mamurjor.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmamurjor-simple-contact-form.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":30,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"Mamurjor IT",6,20,90,30,87,"2026-04-05T04:02:03.518Z",[38,61,82,100,120],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":58,"download_link":59,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":60},"contact-form-7-lead-info-with-country","Lead info with country for Contact Form 7","2.6","apasionados","https:\u002F\u002Fprofiles.wordpress.org\u002Fapasionados\u002F","\u003Cp>Lead info with country for Contact Form 7 is an \u003Cstrong>addon module for the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcontact-form-7\u002F\" rel=\"ugc\">Contact Form 7\u003C\u002Fa> plugin\u003C\u002Fstrong>. It helps you track the user who fills out a form.\u003Cbr \u002F>\nAll you need to do is add the \u003Cem>[tracking-info]\u003C\u002Fem> shortcode in the Message body of the contact form 7.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Since version 1.5.0 you can also use the shortcode \u003Cem>[tracking-info-noip]\u003C\u002Fem> in the Message body of contact form 7 which will not include the IP of the user in case you have concerns regarding the General Data Protection Regulation (EU) 2016\u002F679 (“GDPR”).\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>This plugin is an enhanced version of the plugin \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcontact-form-7-leads-tracking\u002F\" rel=\"ugc\">Contact Form 7 Leads Tracking\u003C\u002Fa>, that includes translations and the lookup of the country of the IP from which the form is sent.\u003C\u002Fp>\n\u003Cp>We decided to create this enhanced version of the plugin, because we needed a translation to Spanish and wanted to know the country from which the uses send the contact form, whithout having to lookup the IP adress.\u003C\u002Fp>\n\u003Cp>The lead tracking info includes: Form Page URL, Original Referrer, Landing Page, User IP, Country of the User IP and Browser.\u003C\u002Fp>\n\u003Cp>In order to display the Country it needs the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgeoip-detect\u002F\" rel=\"ugc\">Geolocation IP Detection (until March 2020: GeoIP Detection) plugin\u003C\u002Fa> that can be found in the WordPress plugin repository. This plugin “provides geographic information detected by an IP adress”. \u003Cem>This plugin auto-updates the GeoIP database once a week. This product includes GeoLite data created by MaxMind, available from \u003Ca href=\"http:\u002F\u002Fwww.maxmind.com\" rel=\"nofollow ugc\">www.maxmind.com\u003C\u002Fa>.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>If the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgeoip-detect\u002F\" rel=\"ugc\">Geolocation IP Detection (until March 2020: GeoIP Detection) plugin\u003C\u002Fa> is not installed and enabled, you will only see the IP address, without the country of the IP adress.\u003C\u002Fp>\n\u003Cp>We decided to use the Geolocation IP Detection (until March 2020: GeoIP Detection) plugin to handle the lookup of the country, because it’s a plugin that is actively developed and we saw no advantage in implementing all this functionality, when we could use an existing one.\u003C\u002Fp>\n\u003Cp>The lead tracking info in this plugin includes:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>Form Page URL\u003C\u002Fstrong>\u003Cbr \u002F>\nThe URL on which the user filled out the form.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Original Referrer\u003C\u002Fstrong>\u003Cbr \u002F>\nThe URL from which the user came to your site.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Landing Page\u003C\u002Fstrong>\u003Cbr \u002F>\nThe first page the user visited on your site.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>User IP\u003C\u002Fstrong> (is not included when using the shorcode [tracking-info-noip])\u003Cbr \u002F>\nThe IP address of the user who filled out the form.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Country of the IP\u003C\u002Fstrong>\u003Cbr \u002F>\nThe country of the IP address of the user who filled out the form. If the country is 0, please check the FAQ information.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>User Agent \u002F Browser\u003C\u002Fstrong>\u003Cbr \u002F>\nThe browser information of the user who filled the form.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Please make sure that WP_DEBUG in wp-config.php is set to FALSE when using this plugin in production.\u003C\u002Fstrong> If it’s true the message is sent but the AJAX code to show the OK message and clear the form is not executed. This has to do with the Contact Form 7 filter: \u003Cem>wpcf7_mail_components\u003C\u002Fem> we use for adding the tracking information and we can’t change this behaviour. Please be aware of this.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Lead info with country for Contact Form 7 in your Language!\u003C\u002Fh4>\n\u003Cp>This first release is avaliable in English and Spanish. In the languages folder we have included the necessary files to translate this plugin.\u003C\u002Fp>\n\u003Cp>If you would like the plugin in your language and you’re good at translating, please drop us a line at \u003Ca href=\"https:\u002F\u002Fapasionados.es\u002Fcontacto\u002Findex.php?desde=wordpress-org-contactform7leadinfowithcountry-home\" rel=\"nofollow ugc\">Contact us\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Further Reading\u003C\u002Fh4>\n\u003Cp>You can access the description of the plugin in Spanish at: \u003Ca href=\"https:\u002F\u002Fapasionados.es\u002Fblog\u002Finformacion-pais-contact-form-7-plugin-wordpress-6061\u002F\" rel=\"nofollow ugc\">Lead info with country for Contact Form 7 en castellano\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Contact\u003C\u002Fh3>\n\u003Cp>For further information please send us an \u003Ca href=\"https:\u002F\u002Fapasionados.es\u002Fcontacto\u002Findex.php?desde=wordpress-org-contactform7leadinfowithcountry-contact\" rel=\"nofollow ugc\">email\u003C\u002Fa>.\u003C\u002Fp>\n","Lead info with country for Contact Form 7 helps to track users that fill in forms.",3000,64888,84,5,"2026-01-27T14:22:00.000Z","6.9.4","3.5","5.3",[55,56,57],"contact-form-7","lead-tracking","user-info","https:\u002F\u002Fapasionados.es\u002Fblog\u002Finformacion-pais-contact-form-7-plugin-wordpress-6061\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontact-form-7-lead-info-with-country.2.6.zip","2026-03-15T15:16:48.613Z",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":46,"downloaded":69,"rating":70,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":13,"tags":75,"homepage":79,"download_link":80,"security_score":81,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":60},"contact-information-widget","Contact Information Widget","1.5.0","Shital Marakana","https:\u002F\u002Fprofiles.wordpress.org\u002Fshital-patel\u002F","\u003Cp>Easily add a Contact Information (Company Name, Address, Phone No, Email Id) to your sidebar,footer and page. With this plugin you can add Contact Information to page,sidebar,footer.\u003C\u002Fp>\n\u003Cp>Note : If you like the plugin please rate it.\u003C\u002Fp>\n","Easily add a Contact Information Widget to your widgetable sidebar. With this plugin you can add a contact information.",42928,86,7,"2024-04-13T05:50:00.000Z","6.5.8","3.5.0",[62,76,77,78],"contact-me-widget","contact-us-widget","contact-us-widget-plugin","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcontact-information-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontact-information-widget.zip",92,{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":25,"num_ratings":71,"last_updated":92,"tested_up_to":93,"requires_at_least":15,"requires_php":13,"tags":94,"homepage":97,"download_link":98,"security_score":99,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":60},"contact-form-7-get-and-show-parameter-from-url","Contact Form 7 Get and Show Parameter from URL","0.9.7","Chad Huntley","https:\u002F\u002Fprofiles.wordpress.org\u002Fchuntley\u002F","\u003Cp>There are times when using the Contact Form 7 WordPress plugin where you need to pass a parameter\u003Cbr \u002F>\nfrom the URL and into a hidden field or display it in the form. This plugin is great for passing things\u003Cbr \u002F>\nsuch as order numbers, selected packages, or even security information.\u003C\u002Fp>\n","Get or show parameters from the URL directly within the Contact Form 7 plugin",900,14803,"2015-03-02T16:30:00.000Z","4.1.42",[55,95,96],"get-parameter","show-parameter","http:\u002F\u002Felementdesignllc.com\u002F2011\u002F11\u002Fcontact-form-7-get-parameter-from-url-into-form-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontact-form-7-get-and-show-parameter-from-url.0.9.7.zip",85,{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":25,"num_ratings":110,"last_updated":111,"tested_up_to":112,"requires_at_least":113,"requires_php":114,"tags":115,"homepage":118,"download_link":119,"security_score":99,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":60},"widget-contact-now","Widget Contact Now","1.0.1","longvietweb","https:\u002F\u002Fprofiles.wordpress.org\u002Flongvietweb\u002F","\u003Cp>\u003Cstrong>Contact Info\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The Contact Now widget is a quick way to create contact information through the contact widget on wordpress admin, without touching a single line of code.\u003Cbr \u002F>\nThis plugin shows your contact info with icons. Add the widget to a widget position like the footer or sidebar, fill in the info,\u003Cbr \u002F>\nchoose an icon color and press save. Your contact info with icons is now being displayed on the front-end of your website!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Add contact information quickly and easily with ready-made labels, unlimited color customization.\u003C\u002Fp>\n\u003Cp>Display gorgeous contact information on your website with simple, easy-to-use widgets.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Contact Information\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Display your contact information including company name, work address, telephone number, mobile number, email address, fax number, opening and closing hours, and calendar.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flongvietweb.com\u002Fplugins\u002Fwidget-contact\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa>\u003C\u002Fp>\n","Add contact information quickly and easily with ready-made labels. Display gorgeous contact information on your website with simple, easy-to-use widge …",600,6251,2,"2019-05-18T04:28:00.000Z","5.2.24","4.6","5.6",[19,116,62,117,101],"contact-information","widget-contact","https:\u002F\u002Flongvietweb.com\u002Fplugins\u002Fwidget-contact","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwidget-contact-now.zip",{"slug":121,"name":63,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":129,"num_ratings":130,"last_updated":131,"tested_up_to":132,"requires_at_least":74,"requires_php":133,"tags":134,"homepage":136,"download_link":137,"security_score":99,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":60},"simple-contact-information-widget","1.0.3","jaydeepchauhan","https:\u002F\u002Fprofiles.wordpress.org\u002Fjaydeepchauhan\u002F","\u003Cp>Contact Information Plugin manage the contact related information like compnay name, description, address, email, fax, phone, website etc. in widget. You can show\u002Fhide label and icon. also you can embed the map with conformation.\u003C\u002Fp>\n","Contact Information Widget.",500,5919,94,3,"2022-04-05T09:55:00.000Z","5.9.13","5.2",[19,116,62,135],"widget","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-contact-information-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-contact-information-widget.1.0.3.zip",{"attackSurface":139,"codeSignals":175,"taintFlows":199,"riskAssessment":200,"analyzedAt":212},{"hooks":140,"ajaxHandlers":161,"restRoutes":162,"shortcodes":163,"cronEvents":174,"entryPointCount":110,"unprotectedCount":11},[141,146,151,154,156,159],{"type":142,"name":143,"callback":144,"file":145,"line":31},"action","admin_menu","mamurjor_contact_form_admin","admin\\search.php",{"type":142,"name":147,"callback":148,"file":149,"line":150},"plugins_loaded","anonymous","includes\\class-mamurjor_simple_contact_form.php",142,{"type":142,"name":152,"callback":148,"file":149,"line":153},"admin_enqueue_scripts",157,{"type":142,"name":152,"callback":148,"file":149,"line":155},158,{"type":142,"name":157,"callback":148,"file":149,"line":158},"wp_enqueue_scripts",173,{"type":142,"name":157,"callback":148,"file":149,"line":160},174,[],[],[164,169],{"tag":165,"callback":166,"file":167,"line":168},"mamurjor_contact_admin_without_mail","mamurjor_contact_admin_without","admin\\adminwithoutmail.php",27,{"tag":170,"callback":171,"file":172,"line":173},"mamurjor_contact_admin_mail","mamurjor_contact_form","admin\\index.php",42,[],{"dangerousFunctions":176,"sqlUsage":177,"outputEscaping":191,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":198},[],{"prepared":11,"raw":49,"locations":178},[179,182,184,186,188],{"file":167,"line":180,"context":181},15,"$wpdb->query() with variable interpolation",{"file":172,"line":180,"context":183},"$wpdb->get_var() with variable interpolation",{"file":172,"line":185,"context":181},29,{"file":145,"line":187,"context":181},23,{"file":145,"line":189,"context":190},26,"$wpdb->get_results() with variable interpolation",{"escaped":192,"rawEcho":193,"locations":194},9,1,[195],{"file":145,"line":196,"context":197},66,"raw output",[],[],{"summary":201,"deductions":202},"The mamurjor-simple-contact-form plugin version 1.0.0 presents a mixed security posture. On the positive side, it has a very small attack surface with only two shortcodes and no AJAX handlers or REST API routes, and importantly, none of its entry points appear to be unprotected from an initial assessment. The code also demonstrates good practices in output escaping, with 90% of outputs being properly handled, and no dangerous functions, file operations, or external HTTP requests were detected. The absence of any known vulnerabilities or CVEs in its history is also a strong indicator of responsible development and a relatively secure past.\n\nHowever, significant concerns arise from the handling of SQL queries. All five detected SQL queries are executed without using prepared statements. This is a critical security weakness that exposes the plugin to potential SQL injection vulnerabilities. Furthermore, the complete lack of nonce checks and capability checks on its entry points, while mitigated somewhat by the small and seemingly protected attack surface, means that if any of these entry points were to become exposed or misused, there are no built-in safeguards to verify user intent or authorization. The absence of taint analysis flows is noted, but this could be due to the limited complexity of the plugin or the analysis tools used, and doesn't negate the identified risks.\n\nIn conclusion, while mamurjor-simple-contact-form 1.0.0 exhibits strengths in avoiding common pitfalls like unescaped output and dangerous functions, the pervasive use of raw SQL queries without prepared statements is a major vulnerability that significantly elevates the risk profile. The lack of nonce and capability checks, while not immediately exploitable due to the limited attack surface, represents a weakness that could be exploited if the plugin's context changes or if other vulnerabilities are introduced. This plugin requires immediate attention to address the SQL injection risk.",[203,205,208,210],{"reason":204,"points":32},"Raw SQL queries without prepared statements",{"reason":206,"points":207},"No nonce checks on entry points",10,{"reason":209,"points":207},"No capability checks on entry points",{"reason":211,"points":130},"Limited output escaping (90%)","2026-03-17T05:45:59.836Z",{"wat":214,"direct":223},{"assetPaths":215,"generatorPatterns":218,"scriptPaths":219,"versionParams":220},[216,217],"\u002Fwp-content\u002Fplugins\u002Fmamurjor-simple-contact-form\u002Fcss\u002Fmamurjor_simple_contact_form-admin.css","\u002Fwp-content\u002Fplugins\u002Fmamurjor-simple-contact-form\u002Fjs\u002Fmamurjor_simple_contact_form-admin.js",[],[],[221,222],"mamurjor_simple_contact_form-admin.css?ver=","mamurjor_simple_contact_form-admin.js?ver=",{"cssClasses":224,"htmlComments":225,"htmlAttributes":226,"restEndpoints":227,"jsGlobals":228,"shortcodeOutput":229},[],[],[],[],[],[230],"[mamurjor_contact_shorcode]"]