@MediaPost – Extensão para Contact Form 7 Security & Risk Analysis

wordpress.org/plugins/mediapost-extensao-para-contact-form-7

Este plugin permite a integração entre os formulários de contato do plugin Contact Form 7 e uma conta @MediaPost.

20 active installs v1.0.1 PHP + WP 3.0.1+ Updated Jun 24, 2020
mediapostcontact-form-7contact-form-7-extensionextensao-contact-form-7
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is @MediaPost – Extensão para Contact Form 7 Safe to Use in 2026?

Generally Safe

Score 85/100

@MediaPost – Extensão para Contact Form 7 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago
Risk Assessment

The static analysis of mediapost-extensao-para-contact-form-7 v1.0.1 reveals a generally good security posture with no immediate critical vulnerabilities detected. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the plugin's attack surface. Furthermore, all SQL queries utilize prepared statements, which is a strong security practice against SQL injection. However, the analysis also highlights some areas for improvement.

While the plugin has no recorded vulnerability history, the static analysis shows that 50% of output operations are not properly escaped. This could potentially lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is directly outputted without sanitization. The presence of file operations without further context also warrants a closer look to ensure these operations are secure and do not allow for arbitrary file manipulation or access.

In conclusion, the plugin exhibits a good foundational security, particularly in its handling of database interactions. The primary concern arising from the static analysis is the potential for XSS due to unescaped output. The lack of historical vulnerabilities is positive, but it's crucial to address the identified code signals to maintain this strong security record.

Key Concerns

  • Unescaped output detected
  • File operations present
Vulnerabilities
None known

@MediaPost – Extensão para Contact Form 7 Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

@MediaPost – Extensão para Contact Form 7 Release Timeline

No version history available.
Code Analysis
Analyzed Mar 16, 2026

@MediaPost – Extensão para Contact Form 7 Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
3
3 escaped
Nonce Checks
0
Capability Checks
0
File Operations
2
External Requests
0
Bundled Libraries
0

Output Escaping

50% escaped6 total outputs
Attack Surface

@MediaPost – Extensão para Contact Form 7 Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 5
actionadmin_noticescf7-mediapost.php:31
actionadmin_enqueue_scriptscf7-mediapost.php:55
filterwpcf7_editor_panelscf7-mediapost.php:82
actionwpcf7_save_contact_formcf7-mediapost.php:118
actionwpcf7_before_send_mailcf7-mediapost.php:161
Maintenance & Trust

@MediaPost – Extensão para Contact Form 7 Maintenance & Trust

Maintenance Signals

WordPress version tested5.4.19
Last updatedJun 24, 2020
PHP min version
Downloads4K

Community Trust

Rating0/100
Number of ratings0
Active installs20
Developer Profile

@MediaPost – Extensão para Contact Form 7 Developer Profile

Ademir Diniz

4 plugins · 140 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect @MediaPost – Extensão para Contact Form 7

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/mediapost-extensao-para-contact-form-7/assets/css/styles.css/wp-content/plugins/mediapost-extensao-para-contact-form-7/assets/js/scripts.js
Script Paths
/wp-content/plugins/mediapost-extensao-para-contact-form-7/assets/js/scripts.js
Version Parameters
mediapost-extensao-para-contact-form-7/assets/css/styles.css?ver=mediapost-extensao-para-contact-form-7/assets/js/scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes
cf7mediapost
Data Attributes
cf7mediapost_consumer_keycf7mediapost_consumer_secretcf7mediapost_tokencf7mediapost_token_secretcf7mediapost_enabledcf7mediapost_lista+1 more
FAQ

Frequently Asked Questions about @MediaPost – Extensão para Contact Form 7