[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fv1plzwyzGk8mf_O4eAqMh4FzAPUtQjWFeOf7WnRAmag":3,"$fc4fVyy1AfV75xZdCCoo5U8hhZNl034mORIwK4_vvxhA":437,"$fYji2GRKpM7d5WpTsqHCSD97kVkrugN0HlY63puAhYT8":442},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":60,"crawl_stats":36,"alternatives":67,"analysis":178,"fingerprints":402},"multilang-contact-form","Multilang Contact Form","1.5","digitaldonkey","https:\u002F\u002Fprofiles.wordpress.org\u002Fdigitaldonkey\u002F","\u003Cp>Multilang Contact Form is a very simple and easy contact form compatible with qtranslate. It can be\u003Cbr \u002F>\nimplemented on a page or a post. Optionally you can enable reCapture against spam.\u003C\u002Fp>\n","Multilang Contact Form is a very simple and easy contact form compatible with qtranslate. It can be",60,11869,0,"2012-11-14T15:45:00.000Z","3.4.2","2.5","",[19,20,21,22],"contact","multilang","qtranslated","template","http:\u002F\u002Fdonkeymedia.eu\u002F2010\u002F08\u002F26\u002Fworpress-multilingual-contactform\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultilang-contact-form.zip",42,2,"2025-09-26 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[31,47],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":27,"updated_date":42,"references":43,"days_to_patch":36,"patch_diff_files":45,"patch_trac_url":36,"research_status":36,"research_verified":46,"research_rounds_completed":13,"research_plan":36,"research_summary":36,"research_vulnerable_code":36,"research_fix_diff":36,"research_exploit_outline":36,"research_model_used":36,"research_started_at":36,"research_completed_at":36,"research_error":36,"poc_status":36,"poc_video_id":36,"poc_summary":36,"poc_steps":36,"poc_tested_at":36,"poc_wp_version":36,"poc_php_version":36,"poc_playwright_script":36,"poc_exploit_code":36,"poc_has_trace":46,"poc_model_used":36,"poc_verification_depth":36},"CVE-2025-62896","multilang-contact-form-cross-site-request-forgery","Multilang Contact Form \u003C= 1.5 - Cross-Site Request Forgery","The Multilang Contact Form plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to perform an unauthorized action via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=1.5","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2025-10-29 15:06:38",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F6c5cffd0-3674-48de-9b4a-481815f3e730?source=api-prod",[],false,{"id":48,"url_slug":49,"title":50,"description":51,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":52,"cvss_vector":53,"vuln_type":54,"published_date":55,"updated_date":56,"references":57,"days_to_patch":36,"patch_diff_files":59,"patch_trac_url":36,"research_status":36,"research_verified":46,"research_rounds_completed":13,"research_plan":36,"research_summary":36,"research_vulnerable_code":36,"research_fix_diff":36,"research_exploit_outline":36,"research_model_used":36,"research_started_at":36,"research_completed_at":36,"research_error":36,"poc_status":36,"poc_video_id":36,"poc_summary":36,"poc_steps":36,"poc_tested_at":36,"poc_wp_version":36,"poc_php_version":36,"poc_playwright_script":36,"poc_exploit_code":36,"poc_has_trace":46,"poc_model_used":36,"poc_verification_depth":36},"CVE-2025-22795","multilang-contact-form-reflected-cross-site-scripting","Multilang Contact Form \u003C= 1.5 - Reflected Cross-Site Scripting","The Multilang Contact Form plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-01-13 00:00:00","2025-01-22 20:03:20",[58],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ff821bc5d-4590-4dfb-b709-73476a7eeac2?source=api-prod",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":61,"total_installs":62,"avg_security_score":63,"avg_patch_time_days":64,"trust_score":65,"computed_at":66},3,80,76,30,77,"2026-05-20T09:04:40.540Z",[68,95,118,138,158],{"slug":69,"name":70,"version":71,"author":72,"author_profile":73,"description":74,"short_description":75,"active_installs":76,"downloaded":77,"rating":78,"num_ratings":79,"last_updated":80,"tested_up_to":81,"requires_at_least":82,"requires_php":83,"tags":84,"homepage":90,"download_link":91,"security_score":92,"vuln_count":93,"unpatched_count":13,"last_vuln_date":94,"fetched_at":28},"cf7-email-add-on","Email addon for CF7","2.0","KrishaWeb","https:\u002F\u002Fprofiles.wordpress.org\u002Fkrishaweb\u002F","\u003Cp>Email addon for CF7 is the email configuration extension to the Contact Form 7. It lets you customize the contact form email both for users and admin. You can select the most suitable email template from the pre-developed templates and easily customize the template as per your requirements. You can add and update the content, links, graphics and buttons of the email template that too without expert coding skills.\u003C\u002Fp>\n\u003Cp>Different pre-developed email templates lets also enables you to do the A\u002FB testing to understand the user behavior and improve the conversion rate. It is not just a contact from 7 email add on, it also helps you with your conversion optimization process. It is easy to install, set up and requires minimum technical skills to update.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Plugin Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>10+ Pre-developed responsive email templates\u003C\u002Fli>\n\u003Cli>Multiple Email templates for Contact Form 7\u003C\u002Fli>\n\u003Cli>Single step template selection \u003C\u002Fli>\n\u003Cli>Click to copy shortcode\u003C\u002Fli>\n\u003Cli>User can see special mail tags on the plugin popup\u003C\u002Fli>\n\u003Cli>Can add\u002Fremove form fields \u003C\u002Fli>\n\u003Cli>Ability to customize pre-developed templates\u003C\u002Fli>\n\u003Cli>Compatible with WordPress 4.6 and above \u003C\u002Fli>\n\u003Cli>Compatible with Contact Form 7 version 5 and above\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>PRO Plugin Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>18+ Pre-developed responsive email templates\u003C\u002Fli>\n\u003Cli>Can download HTML Template for external use\u003C\u002Fli>\n\u003Cli>Compatible with custom shortcode\u003C\u002Fli>\n\u003Cli>Preview template & send test email\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fblockquote>\n\u003Ch4>Buy Contact Form 7 Email Add On Pro on Codecanyon :\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcodecanyon.net\u002Fitem\u002Fcontact-form-7-email-add-on-pro\u002F23172379\" rel=\"nofollow ugc\">https:\u002F\u002Fcodecanyon.net\u002Fitem\u002Fcontact-form-7-email-add-on-pro\u002F23172379\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Check such amazing email add-on for Ninja form as well at \u003Ca href=\"https:\u002F\u002Fcodecanyon.net\u002Fitem\u002Fninja-forms-email-add-on\u002F22782567\" rel=\"nofollow ugc\">https:\u002F\u002Fcodecanyon.net\u002Fitem\u002Fninja-forms-email-add-on\u002F22782567\u003C\u002Fa>. It comes with all these features for Ninja form along with some additional features.\u003C\u002Fp>\n","Email addon for CF7 plugin provides the responsive Email templates to admin and users.",3000,36954,92,9,"2025-09-26T07:28:00.000Z","6.8.5","6.6","7.4",[85,86,87,88,89],"cf7","contactform7","email-template","html-email","shortcode","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcf7-email-add-on\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-email-add-on.2.0.zip",98,1,"2024-11-20 00:00:00",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":105,"num_ratings":106,"last_updated":107,"tested_up_to":108,"requires_at_least":109,"requires_php":17,"tags":110,"homepage":114,"download_link":115,"security_score":116,"vuln_count":61,"unpatched_count":93,"last_vuln_date":117,"fetched_at":28},"wp-email-template","WP Email Template","2.8.6","Steve Truman","https:\u002F\u002Fprofiles.wordpress.org\u002Fa3rev\u002F","\u003Cp>WP Email Template 2 things – beautifully\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>Applies a responsive, customizable, optimized HTML email template to every email sent from your WordPress site including plugin generated emails.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Gets your beautiful \u002F professional emails delivered. Easily Configure advanced email sending providers with any of these supported providers\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cul>\n\u003Cli>SMTP via your server\u003C\u002Fli>\n\u003Cli>Gmail SMTP\u003C\u002Fli>\n\u003Cli>Mandrill (API or SMTP)\u003C\u002Fli>\n\u003Cli>SparkPost (HTTP API or SMTP API)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>EMAIL TEMPLATE\u003C\u002Fh4>\n\u003Cp>The plugin applies a HTML template to email sent from your WordPress site. The Template is optimized to show your HTML emails perfectly in the10 most popular email browsers.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Apple iOS Devices\u003C\u002Fli>\n\u003Cli>MS Outlook\u003C\u002Fli>\n\u003Cli>Hotmail\u003C\u002Fli>\n\u003Cli>Apple Mail\u003C\u002Fli>\n\u003Cli>Yahoo! Mail\u003C\u002Fli>\n\u003Cli>Google Gmail\u003C\u002Fli>\n\u003Cli>Android Devices\u003C\u002Fli>\n\u003Cli>Windows Live Desktop\u003C\u002Fli>\n\u003Cli>Mozilla Thunderbird\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>TEMPLATE EDIT OPTIONS\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Option to Turn the Template ON | OFF. OFF to just use the plugin use to set up wp email sender without using the template (see below).\u003C\u002Fli>\n\u003Cli>Dynamic Template Width – admin can edit the 600px default width of the Template.\u003C\u002Fli>\n\u003Cli>Template Background colour selector\u003C\u002Fli>\n\u003Cli>Background Pattern ON | OFF setting.\u003C\u002Fli>\n\u003Cli>Upload and position Email Template Header image\u003C\u002Fli>\n\u003Cli>Header Image container background, border, and padding settings.\u003C\u002Fli>\n\u003Cli>Footer – add email template custom footer content via the WordPress editor.\u003C\u002Fli>\n\u003Cli>Follow us on – add links to social media site where users can follow you.\u003C\u002Fli>\n\u003Cli>Many more dynamic style options available in the Pro version.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>EMAIL SENDING OPTIONS\u003C\u002Fh4>\n\u003Cp>The biggest issue users have are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Email Spammers make successful email delivery a very complicated and specialized function.\u003C\u002Fli>\n\u003Cli>WordPress by default uses your web hosts local mail server to send all WordPress and plugin generated emails.\u003C\u002Fli>\n\u003Cli>Emails sent from a web host local mail server have poor delivery rates because they have very little or no reputation.\u003C\u002Fli>\n\u003Cli>Configuring any type of email delivery provider will improve email delivery rates.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Every different Email Provider requires another plugin to configure. For example here are just a few of the available choices.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Send Email via SMTP – \u003Ca href=\"http:\u002F\u002Fhttps:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-mail-smtp\u002F\" rel=\"nofollow ugc\">WP SMTP Mail\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-smtp\u002F\" rel=\"ugc\">WP SMPT\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-wp-smtp\u002F\" rel=\"ugc\">Easy WP SMTP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Send Email via Gmail SMTP – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsendpress\u002F\" rel=\"ugc\">SendPress Lite\u003C\u002Fa> and any SMTP plugin if you know what you are doing.\u003C\u002Fli>\n\u003Cli>Send Email via Mandrill – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpmandrill\u002F\" rel=\"ugc\">wpMandrill\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Send Email via SparkPost – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsparkpost\u002F\" rel=\"ugc\">SparkPost\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Send via WordPress default ‘local mail server’ if using GoDaddy Hosting – Auto Config WordPress default Email Sending – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsendpress\u002F\" rel=\"ugc\">SendPress Lite\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>At a3rev we want users to be able to\u003C\u002Fp>\n\u003Col>\n\u003Cli>Create a Beautiful \u002F Professional HTML Email template.\u003C\u002Fli>\n\u003Cli>Auto apply that template to all emails sent from WordPress and installed plugins.\u003C\u002Fli>\n\u003Cli>Easily configure a sending provider to get those emails delivered.\u003C\u002Fli>\n\u003Cli>Do it all with one plugin, quickly and easily.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>That is why we have added the Email Sending Provider Configuration Options so you can do all of that with just one plugin – WP Email Template.\u003C\u002Fp>\n\u003Ch4>EMAIL FROM PLUGINS\u003C\u002Fh4>\n\u003Cp>WP Email Template will not work with any plugin that:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Applies it’s own HTML Email Template (WP Email Template is still applied but the 2 together will look bad).\u003C\u002Fli>\n\u003Cli>Send it’s emails via the php() function. WP Email Template is applied to all mail that goes through wp_mail()\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Some of the better known plugins of the 1,000’s of plugins that WP Email Template works beautifully with.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Gravity Forms – see the screen shots – looks sensational with the default Gravity style.\u003C\u002Fli>\n\u003Cli>Contact Form 7 – see the screenshots\u003C\u002Fli>\n\u003Cli>Formidable Forms – both Lite and Pro Versions of that plugin\u003C\u002Fli>\n\u003Cli>WooCommerce – Version 2.3.9 and backward compatible to version 2.1.0. By default the plugin ignores WooCommerce email output – but you can choose to apply your WordPress Email Template to all Woocomerce emails to give you consistent branding across your entire site.\u003C\u002Fli>\n\u003Cli>WP e-Commerce – applies the template to every store generated email to customers and admins\u003C\u002Fli>\n\u003Cli>WP Mail SMPT – WP Email Template does not interfere with the way any WordPress or any plugin handles email output – it just applies the template to any output content.\u003C\u002Fli>\n\u003Cli>BackupBuddy – I love it when even my admin emails are branded – see the screenshots\u003C\u002Fli>\n\u003Cli>Wordfence – Branded security emails – nice.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>PREMIUM VERSION\u003C\u002Fh4>\n\u003Cp>For those who want more advanced features there is a Premium version. View addition features at \u003Ca href=\"http:\u002F\u002Fa3rev.com\u002Fshop\u002Fwp-email-template\u002F\" rel=\"nofollow ugc\">WP EMAIL TEMPLATE PREMIUM\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>CONTRIBUTE\u003C\u002Fh4>\n\u003Cp>When you download WP Email Template, you join our the a3rev Software community. Regardless of if you are a WordPress beginner or experienced developer if you are interested in contributing to the future development of this plugin head over to the WP Email Template public \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fa3rev\u002Fwp-email-template-lite\" rel=\"nofollow ugc\">GitHub Repository\u003C\u002Fa> to find out how you can contribute.\u003C\u002Fp>\n\u003Cp>Want to add a new language to WP Email Template! You can contribute via \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fwp-email-template\" rel=\"nofollow ugc\">translate.wordpress.org\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>Install and activate the plugin\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Go to WP Email menu on your wp-admin dashboard.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Go to the Template sub menu and add your template styling\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Go to the Send WP Mail sub menu and configure your preferred email sending provider.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Enjoy.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n","Add a beautiful HTML Template to all WordPress and plugin generated emails. Send email options - SMTP, Gmail, Mandrill, SparkPost, GoDaddy Hosting sup &hellip;",2000,252073,62,35,"2026-04-14T06:48:00.000Z","7.0","6.0",[19,111,87,112,113],"email","wordpress-email","wordpress-email-template","http:\u002F\u002Fa3rev.com\u002Fshop\u002Fwp-email-template\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-email-template.2.8.6.zip",73,"2025-09-05 00:00:00",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":126,"downloaded":127,"rating":128,"num_ratings":61,"last_updated":129,"tested_up_to":81,"requires_at_least":130,"requires_php":83,"tags":131,"homepage":135,"download_link":136,"security_score":137,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":28},"cf7-html-email-template-extension","HTML Template for CF7","2.2.2","Mário Valney","https:\u002F\u002Fprofiles.wordpress.org\u002Fmariovalney\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcontact-form-7\u002F\" title=\"Install it first, of course\" rel=\"ugc\">Contact Form 7 (CF7)\u003C\u002Fa> is a awesome plugin used by 1+ million WordPress websites.\u003C\u002Fp>\n\u003Cp>But even it allow users to use HTML instead of just Plain Text email it’s not trivial to users who aren’t developers create something really pro.\u003C\u002Fp>\n\u003Cp>However, time to leave all your worries behind! As a recently launched “Contact Form 7 – HTML Mail Template Extension” will allow you, WordPress developers or not, to use a simply but beautiful HTML Template in your CF7 so users will get better emails than just amount of text.\u003C\u002Fp>\n\u003Ch4>Configurations\u003C\u002Fh4>\n\u003Cp>Easily and quickly! No configurations required to start, but you can change a lot of stuff like colors, header image and width (by now… new versions will come).\u003C\u002Fp>\n\u003Ch4>Email Template\u003C\u002Fh4>\n\u003Cp>The plugin applies a HTML template to email sent from your CF7. The Template is optimized to show your HTML emails perfectly in the most popular email browsers including mobile ones.\u003C\u002Fp>\n","Improve your Contact Form 7 emails with a HTML Template.",1000,28056,94,"2025-11-03T17:01:00.000Z","4.5",[85,132,133,87,134],"contact-form","contact-form-7","emails","https:\u002F\u002Fgithub.com\u002Fmariovalney\u002Fcf7-html-email-template-extension","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-html-email-template-extension.2.2.2.zip",100,{"slug":139,"name":140,"version":141,"author":142,"author_profile":143,"description":144,"short_description":145,"active_installs":137,"downloaded":146,"rating":13,"num_ratings":13,"last_updated":147,"tested_up_to":148,"requires_at_least":149,"requires_php":150,"tags":151,"homepage":156,"download_link":157,"security_score":78,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":28},"formzard","Pre-Built Contact Form 7 Templates – Formzard","1.1.1","Anwer Ashif","https:\u002F\u002Fprofiles.wordpress.org\u002Fanwerashif\u002F","\u003Cp>\u003Cstrong>Formzard\u003C\u002Fstrong> is the ultimate add-on for Contact Form 7, designed to streamline form creation with pre-designed templates. Instead of building forms from scratch, simply select a professionally crafted template and customize it to your needs.\u003C\u002Fp>\n\u003Ch3>\u003Cstrong>Why Choose Formzard?\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Save time with ready-made \u003Cstrong>Contact Form 7 templates\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>No coding required—just \u003Cstrong>import, edit, and publish\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Optimized for \u003Cstrong>mobile responsiveness\u003C\u002Fstrong> and \u003Cstrong>fast performance\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Contact Us Form\u003C\u002Fstrong> – Name, email, subject, and message fields.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Event Registration Form\u003C\u002Fstrong> – Collect attendee details easily.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Newsletter Signup Form\u003C\u002Fstrong> – Build your email list effortlessly.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Job Application Form\u003C\u002Fstrong> – Accept resumes and candidate info.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Survey Form\u003C\u002Fstrong> – Gather user feedback with multiple-choice options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Donation Form\u003C\u002Fstrong> – Securely accept online donations.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Appointment Booking Form\u003C\u002Fstrong> – Allow users to schedule appointments.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Feedback Form\u003C\u002Fstrong> – Collect user reviews and testimonials.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Request a Quote Form\u003C\u002Fstrong> – Let potential clients request estimates.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>More templates added regularly!\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Each template is built for \u003Cstrong>seamless integration with Contact Form 7\u003C\u002Fstrong>, ensuring an easy and hassle-free form-building experience.\u003C\u002Fp>\n\u003Ch3>\u003Cstrong>How It Works:\u003C\u002Fstrong>\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Install and activate \u003Cstrong>Formzard\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Go to \u003Cstrong>Formzard\u003C\u002Fstrong> in your WordPress dashboard.\u003C\u002Fli>\n\u003Cli>Choose a template and import it instantly.\u003C\u002Fli>\n\u003Cli>Customize it with \u003Cstrong>Contact Form 7\u003C\u002Fstrong> and publish.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by \u003Cstrong>Anwer Ashif\u003C\u002Fstrong> to make \u003Cstrong>Contact Form 7\u003C\u002Fstrong> more efficient and user-friendly.\u003C\u002Fp>\n","Boost your Contact Form 7 experience with ready-to-use form templates for job applications, event registration, feedback, and more!",1303,"2025-02-09T15:13:00.000Z","6.7.5","5.6","7.2",[152,133,153,154,155],"cf7-templates","form-templates","pre-designed-forms","wordpress-forms","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fformzard","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fformzard.1.1.1.zip",{"slug":159,"name":160,"version":161,"author":162,"author_profile":163,"description":164,"short_description":165,"active_installs":166,"downloaded":167,"rating":13,"num_ratings":13,"last_updated":168,"tested_up_to":169,"requires_at_least":170,"requires_php":17,"tags":171,"homepage":175,"download_link":176,"security_score":177,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":28},"insert-pipefy-form-launcher","Insert Pipefy Form Launcher","1.0.0","thiagomatsunaga","https:\u002F\u002Fprofiles.wordpress.org\u002Fthiagomatsunaga\u002F","\u003Cp>Pipefy is a business process management platform that makes work easier and faster for frontline employees in HR, Finance, Marketing and Customer Service, including IT and Help Desk. After setting up the process inside Pipefy the users can turn their form public to receive external requests from everyone with the public link.\u003C\u002Fp>\n\u003Cp>By using the Pipefy Public Form you don’t need to configure emails or SMTPs, all the filled forms will create cards inside your process inside the platform. Inside Pipefy you have an awesome form builder to collect all kind of informations from your visitors like: Short text, long text, attachment, checkbox, assignees, date and datetime, due date, labels, email, phone, drop-down select and radio buttons, time, numeric, currency and documents.\u003C\u002Fp>\n\u003Cp>With the Form Launcher plugin you can embed this form in a friendly way inside your website and engage visitors with your public form. Just install the WordPress plugin, insert your public form ID and… that’s it.\u003C\u002Fp>\n\u003Cp>The plugin will put a Button inside every page you have on the right bottom corner. You can customize the “call to action”, the color and choose between a popup or a full-page form experience.\u003C\u002Fp>\n\u003Cp>You will need a Pipefy account. Pipefy provides a free plan with Public Forms by default at https:\u002F\u002Fwww.pipefy.com\u002F\u003C\u002Fp>\n","Tickets, leads, questions... basically anything from your WordPress website to Pipefy in seconds.",10,3061,"2020-08-15T19:37:00.000Z","5.5.18","4.0",[132,172,173,174,22],"form","pipefy","public-form","http:\u002F\u002Fthiagomatsunaga.com\u002Fpipefy-launcher","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finsert-pipefy-form-launcher.zip",85,{"attackSurface":179,"codeSignals":195,"taintFlows":253,"riskAssessment":388,"analyzedAt":401},{"hooks":180,"ajaxHandlers":187,"restRoutes":188,"shortcodes":189,"cronEvents":194,"entryPointCount":93,"unprotectedCount":13},[181],{"type":182,"name":183,"callback":184,"file":185,"line":186},"action","admin_menu","mlcf_add_options_page","ml-contactform.php",324,[],[],[190],{"tag":191,"callback":192,"file":185,"line":193},"contact_form","mclf_tag_replace",325,[],{"dangerousFunctions":196,"sqlUsage":197,"outputEscaping":199,"fileOperations":93,"externalRequests":13,"nonceChecks":13,"capabilityChecks":93,"bundledLibraries":252},[],{"prepared":13,"raw":13,"locations":198},[],{"escaped":13,"rawEcho":200,"locations":201},26,[202,206,208,210,212,214,216,218,220,222,224,226,228,230,232,234,236,237,239,241,242,244,246,247,249,251],{"file":203,"line":204,"context":205},"ml-contactform-options.php",118,"raw output",{"file":203,"line":207,"context":205},124,{"file":203,"line":209,"context":205},130,{"file":203,"line":211,"context":205},145,{"file":203,"line":213,"context":205},153,{"file":203,"line":215,"context":205},164,{"file":203,"line":217,"context":205},179,{"file":203,"line":219,"context":205},184,{"file":203,"line":221,"context":205},189,{"file":203,"line":223,"context":205},193,{"file":203,"line":225,"context":205},198,{"file":203,"line":227,"context":205},203,{"file":203,"line":229,"context":205},208,{"file":203,"line":231,"context":205},216,{"file":203,"line":233,"context":205},220,{"file":203,"line":235,"context":205},221,{"file":203,"line":235,"context":205},{"file":203,"line":238,"context":205},223,{"file":203,"line":240,"context":205},224,{"file":203,"line":240,"context":205},{"file":203,"line":243,"context":205},226,{"file":203,"line":245,"context":205},227,{"file":203,"line":245,"context":205},{"file":203,"line":248,"context":205},234,{"file":185,"line":250,"context":205},205,{"file":185,"line":231,"context":205},[],[254],{"entryPoint":255,"graph":256,"unsanitizedCount":386,"severity":387},"\u003Cml-contactform-options> (ml-contactform-options.php:0)",{"nodes":257,"edges":367},[258,263,268,272,274,278,280,284,286,289,291,295,297,300,302,306,308,312,314,318,320,324,326,330,332,336,338,342,344,348,350,354,356,360,362,365],{"id":259,"type":260,"label":261,"file":203,"line":262},"n0","source","$_POST['mlcf_email']",56,{"id":264,"type":265,"label":266,"file":203,"line":262,"wp_function":267},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":269,"type":260,"label":270,"file":203,"line":271},"n2","$_POST['mlcf_subject']",57,{"id":273,"type":265,"label":266,"file":203,"line":271,"wp_function":267},"n3",{"id":275,"type":260,"label":276,"file":203,"line":277},"n4","$_POST['mlcf_email_from']",58,{"id":279,"type":265,"label":266,"file":203,"line":277,"wp_function":267},"n5",{"id":281,"type":260,"label":282,"file":203,"line":283},"n6","$_POST['mlcf_success_message']",59,{"id":285,"type":265,"label":266,"file":203,"line":283,"wp_function":267},"n7",{"id":287,"type":260,"label":288,"file":203,"line":11},"n8","$_POST['mlcf_error_message']",{"id":290,"type":265,"label":266,"file":203,"line":11,"wp_function":267},"n9",{"id":292,"type":260,"label":293,"file":203,"line":294},"n10","$_POST['mlcf_error_wrong_mail']",61,{"id":296,"type":265,"label":266,"file":203,"line":294,"wp_function":267},"n11",{"id":298,"type":260,"label":299,"file":203,"line":105},"n12","$_POST['mlcf_field_name']",{"id":301,"type":265,"label":266,"file":203,"line":105,"wp_function":267},"n13",{"id":303,"type":260,"label":304,"file":203,"line":305},"n14","$_POST['mlcf_field_email']",63,{"id":307,"type":265,"label":266,"file":203,"line":305,"wp_function":267},"n15",{"id":309,"type":260,"label":310,"file":203,"line":311},"n16","$_POST['mlcf_field_subject']",64,{"id":313,"type":265,"label":266,"file":203,"line":311,"wp_function":267},"n17",{"id":315,"type":260,"label":316,"file":203,"line":317},"n18","$_POST['mlcf_field_www']",65,{"id":319,"type":265,"label":266,"file":203,"line":317,"wp_function":267},"n19",{"id":321,"type":260,"label":322,"file":203,"line":323},"n20","$_POST['mlcf_field_message']",66,{"id":325,"type":265,"label":266,"file":203,"line":323,"wp_function":267},"n21",{"id":327,"type":260,"label":328,"file":203,"line":329},"n22","$_POST['mlcf_field_required']",67,{"id":331,"type":265,"label":266,"file":203,"line":329,"wp_function":267},"n23",{"id":333,"type":260,"label":334,"file":203,"line":335},"n24","$_POST['mlcf_field_submit']",68,{"id":337,"type":265,"label":266,"file":203,"line":335,"wp_function":267},"n25",{"id":339,"type":260,"label":340,"file":203,"line":341},"n26","$_POST['mlcf_recaptcha_enabled']",69,{"id":343,"type":265,"label":266,"file":203,"line":341,"wp_function":267},"n27",{"id":345,"type":260,"label":346,"file":203,"line":347},"n28","$_POST['mlcf_recaptcha_private']",70,{"id":349,"type":265,"label":266,"file":203,"line":347,"wp_function":267},"n29",{"id":351,"type":260,"label":352,"file":203,"line":353},"n30","$_POST['mlcf_recaptcha_public']",71,{"id":355,"type":265,"label":266,"file":203,"line":353,"wp_function":267},"n31",{"id":357,"type":260,"label":358,"file":203,"line":359},"n32","$_POST['mlcf_recaptcha_error_msg']",72,{"id":361,"type":265,"label":266,"file":203,"line":359,"wp_function":267},"n33",{"id":363,"type":260,"label":364,"file":203,"line":116},"n34","$_POST['mlcf_delete_options']",{"id":366,"type":265,"label":266,"file":203,"line":116,"wp_function":267},"n35",[368,369,370,371,372,373,374,375,376,377,378,379,380,381,382,383,384,385],{"from":259,"to":264,"sanitized":46},{"from":269,"to":273,"sanitized":46},{"from":275,"to":279,"sanitized":46},{"from":281,"to":285,"sanitized":46},{"from":287,"to":290,"sanitized":46},{"from":292,"to":296,"sanitized":46},{"from":298,"to":301,"sanitized":46},{"from":303,"to":307,"sanitized":46},{"from":309,"to":313,"sanitized":46},{"from":315,"to":319,"sanitized":46},{"from":321,"to":325,"sanitized":46},{"from":327,"to":331,"sanitized":46},{"from":333,"to":337,"sanitized":46},{"from":339,"to":343,"sanitized":46},{"from":345,"to":349,"sanitized":46},{"from":351,"to":355,"sanitized":46},{"from":357,"to":361,"sanitized":46},{"from":363,"to":366,"sanitized":46},18,"low",{"summary":389,"deductions":390},"The \"multilang-contact-form\" plugin, version 1.5, exhibits a mixed security posture. While it demonstrates good practices by utilizing prepared statements for all SQL queries and having a minimal attack surface with no unprotected entry points, significant concerns arise from its output escaping and vulnerability history. The static analysis reveals that 100% of output is not properly escaped, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities. This is further corroborated by the vulnerability history, which shows two medium-severity CVEs, specifically mentioning Cross-Site Request Forgery (CSRF) and Cross-site Scripting (XSS). The presence of unpatched vulnerabilities, particularly those related to XSS, is a serious red flag. The taint analysis also highlights one flow with an unsanitized path, although it was not classified as critical or high, it still warrants attention in conjunction with the unescaped output.\n\nIn conclusion, despite some commendable security implementations like prepared SQL statements, the plugin's failure to properly escape output and its history of unpatched XSS and CSRF vulnerabilities pose a considerable risk. The lack of proper output escaping makes it susceptible to XSS attacks, which can be leveraged to exploit other vulnerabilities or compromise user sessions. Users of this plugin should be aware of these risks and prioritize updating to a version that addresses these persistent security flaws.",[391,394,396,398],{"reason":392,"points":393},"Unpatched CVEs (2 medium)",20,{"reason":395,"points":393},"No proper output escaping",{"reason":397,"points":166},"Taint analysis: 1 unsanitized path flow",{"reason":399,"points":400},"No nonce checks",5,"2026-03-16T21:43:09.549Z",{"wat":403,"direct":411},{"assetPaths":404,"generatorPatterns":406,"scriptPaths":407,"versionParams":408},[405],"\u002Fwp-content\u002Fplugins\u002Fmultilang-contact-form\u002Frecaptchalib.php",[],[],[409,410],"multilang-contact-form\u002Fstyle.css?ver=","multilang-contact-form\u002Fmlcf.js?ver=",{"cssClasses":412,"htmlComments":416,"htmlAttributes":417,"restEndpoints":431,"jsGlobals":432,"shortcodeOutput":435},[413,414,415],"contactright","contacterror","contactalert",[],[418,419,420,421,422,423,424,425,426,427,428,429,430],"id=\"mlcf_name\"","id=\"mlcf_email\"","id=\"mlcf_subject\"","id=\"mlcf_www\"","id=\"mlcf_message\"","name=\"mlcf_name\"","name=\"mlcf_email\"","name=\"mlcf_subject\"","name=\"mlcf_www\"","name=\"mlcf_message\"","name=\"mlcf_stage\"","name=\"recaptcha_challenge_field\"","name=\"recaptcha_response_field\"",[],[433,434],"var RecaptchaOptions","mlcf_strings",[436],"[contact_form]",{"error":438,"url":439,"statusCode":440,"statusMessage":441,"message":441},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fmultilang-contact-form\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":443,"versions":444},7,[445,454,463,472,481,490,499],{"version":446,"download_url":447,"svn_tag_url":448,"released_at":36,"has_diff":46,"diff_files_changed":449,"diff_lines":36,"trac_diff_url":450,"vulnerabilities":451,"is_current":46},"1.4.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultilang-contact-form.1.4.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmultilang-contact-form\u002Ftags\u002F1.4.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fmultilang-contact-form%2Ftags%2F1.4.2&new_path=%2Fmultilang-contact-form%2Ftags%2F1.4.3",[452,453],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":36},{"id":48,"url_slug":49,"title":50,"severity":38,"cvss_score":52,"vuln_type":54,"patched_in_version":36},{"version":455,"download_url":456,"svn_tag_url":457,"released_at":36,"has_diff":46,"diff_files_changed":458,"diff_lines":36,"trac_diff_url":459,"vulnerabilities":460,"is_current":46},"1.4.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultilang-contact-form.1.4.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmultilang-contact-form\u002Ftags\u002F1.4.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fmultilang-contact-form%2Ftags%2F1.4.1&new_path=%2Fmultilang-contact-form%2Ftags%2F1.4.2",[461,462],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":36},{"id":48,"url_slug":49,"title":50,"severity":38,"cvss_score":52,"vuln_type":54,"patched_in_version":36},{"version":464,"download_url":465,"svn_tag_url":466,"released_at":36,"has_diff":46,"diff_files_changed":467,"diff_lines":36,"trac_diff_url":468,"vulnerabilities":469,"is_current":46},"1.4.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultilang-contact-form.1.4.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmultilang-contact-form\u002Ftags\u002F1.4.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fmultilang-contact-form%2Ftags%2F1.4&new_path=%2Fmultilang-contact-form%2Ftags%2F1.4.1",[470,471],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":36},{"id":48,"url_slug":49,"title":50,"severity":38,"cvss_score":52,"vuln_type":54,"patched_in_version":36},{"version":473,"download_url":474,"svn_tag_url":475,"released_at":36,"has_diff":46,"diff_files_changed":476,"diff_lines":36,"trac_diff_url":477,"vulnerabilities":478,"is_current":46},"1.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultilang-contact-form.1.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmultilang-contact-form\u002Ftags\u002F1.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fmultilang-contact-form%2Ftags%2F1.2&new_path=%2Fmultilang-contact-form%2Ftags%2F1.4",[479,480],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":36},{"id":48,"url_slug":49,"title":50,"severity":38,"cvss_score":52,"vuln_type":54,"patched_in_version":36},{"version":482,"download_url":483,"svn_tag_url":484,"released_at":36,"has_diff":46,"diff_files_changed":485,"diff_lines":36,"trac_diff_url":486,"vulnerabilities":487,"is_current":46},"1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultilang-contact-form.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmultilang-contact-form\u002Ftags\u002F1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fmultilang-contact-form%2Ftags%2F1.1&new_path=%2Fmultilang-contact-form%2Ftags%2F1.2",[488,489],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":36},{"id":48,"url_slug":49,"title":50,"severity":38,"cvss_score":52,"vuln_type":54,"patched_in_version":36},{"version":491,"download_url":492,"svn_tag_url":493,"released_at":36,"has_diff":46,"diff_files_changed":494,"diff_lines":36,"trac_diff_url":495,"vulnerabilities":496,"is_current":46},"1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultilang-contact-form.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmultilang-contact-form\u002Ftags\u002F1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fmultilang-contact-form%2Ftags%2F1.0&new_path=%2Fmultilang-contact-form%2Ftags%2F1.1",[497,498],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":36},{"id":48,"url_slug":49,"title":50,"severity":38,"cvss_score":52,"vuln_type":54,"patched_in_version":36},{"version":500,"download_url":501,"svn_tag_url":502,"released_at":36,"has_diff":46,"diff_files_changed":503,"diff_lines":36,"trac_diff_url":36,"vulnerabilities":504,"is_current":46},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultilang-contact-form.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fmultilang-contact-form\u002Ftags\u002F1.0\u002F",[],[505,506],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":36},{"id":48,"url_slug":49,"title":50,"severity":38,"cvss_score":52,"vuln_type":54,"patched_in_version":36}]