
@MediaPost – Extensão para Contact Form 7 Security & Risk Analysis
wordpress.org/plugins/mediapost-extensao-para-contact-form-7Este plugin permite a integração entre os formulários de contato do plugin Contact Form 7 e uma conta @MediaPost.
Is @MediaPost – Extensão para Contact Form 7 Safe to Use in 2026?
Generally Safe
Score 85/100@MediaPost – Extensão para Contact Form 7 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The static analysis of mediapost-extensao-para-contact-form-7 v1.0.1 reveals a generally good security posture with no immediate critical vulnerabilities detected. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the plugin's attack surface. Furthermore, all SQL queries utilize prepared statements, which is a strong security practice against SQL injection. However, the analysis also highlights some areas for improvement.
While the plugin has no recorded vulnerability history, the static analysis shows that 50% of output operations are not properly escaped. This could potentially lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is directly outputted without sanitization. The presence of file operations without further context also warrants a closer look to ensure these operations are secure and do not allow for arbitrary file manipulation or access.
In conclusion, the plugin exhibits a good foundational security, particularly in its handling of database interactions. The primary concern arising from the static analysis is the potential for XSS due to unescaped output. The lack of historical vulnerabilities is positive, but it's crucial to address the identified code signals to maintain this strong security record.
Key Concerns
- Unescaped output detected
- File operations present
@MediaPost – Extensão para Contact Form 7 Security Vulnerabilities
@MediaPost – Extensão para Contact Form 7 Release Timeline
@MediaPost – Extensão para Contact Form 7 Code Analysis
Output Escaping
@MediaPost – Extensão para Contact Form 7 Attack Surface
WordPress Hooks 5
Maintenance & Trust
@MediaPost – Extensão para Contact Form 7 Maintenance & Trust
Maintenance Signals
Community Trust
@MediaPost – Extensão para Contact Form 7 Alternatives
Smart Grid-Layout Design for Contact Form 7
cf7-grid-layout
This plugins allow pure CSS responsive grid layouts for contact form 7. It enables rich interlinking of your CMS data via taxonomy/posts populated dr …
Contact Form 7 Polylang Module
cf7-polylang
This plugin allows multilingual contact form 7 management using the polylang plugin.
Post My CF7 Form
post-my-contact-form-7
This plugin enables the mapping of your CF7 forms to custom posts, including featured images, files, meta-fields and taxonomies
Contact Form 7 extension for Google Map fields
cf7-google-map
This plugin enables the insertion of google maps into contact form 7 as an input field.
OTP by Email for Contact Form 7
otp-by-email
A small Contact Form 7 extension plugin to enable email confirmation by unique links sent to the email inbox.
@MediaPost – Extensão para Contact Form 7 Developer Profile
4 plugins · 140 total installs
How We Detect @MediaPost – Extensão para Contact Form 7
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/mediapost-extensao-para-contact-form-7/assets/css/styles.css/wp-content/plugins/mediapost-extensao-para-contact-form-7/assets/js/scripts.js/wp-content/plugins/mediapost-extensao-para-contact-form-7/assets/js/scripts.jsmediapost-extensao-para-contact-form-7/assets/css/styles.css?ver=mediapost-extensao-para-contact-form-7/assets/js/scripts.js?ver=HTML / DOM Fingerprints
cf7mediapostcf7mediapost_consumer_keycf7mediapost_consumer_secretcf7mediapost_tokencf7mediapost_token_secretcf7mediapost_enabledcf7mediapost_lista+1 more