WP-Safety

MWB GF Integration for HubSpot -Sync HubSpot Forms, Contacts, Tickets Security & Risk Analysis

wordpress.org/plugins/mwb-gf-integration-for-hubspot

Automate lead generation & nurturing by syncing Gravity Form data over HubSpot with this MWB GF Integration for HubSpot plugin.

0 active installs v1.0.0 PHP 7.3.5+ WP 4.0+ Updated Nov 27, 2021
contact-formgf7hubspothubspot-formstickets
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is MWB GF Integration for HubSpot -Sync HubSpot Forms, Contacts, Tickets Safe to Use in 2026?

Generally Safe

Score 85/100

MWB GF Integration for HubSpot -Sync HubSpot Forms, Contacts, Tickets has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago
Risk Assessment

The mwb-gf-integration-for-hubspot plugin v1.0.0 demonstrates a mixed security posture. On the positive side, it shows excellent practices regarding SQL queries, with 100% of them using prepared statements, and a very high rate of output escaping (98%). The plugin also correctly implements nonce checks for its AJAX handlers and includes capability checks. Its vulnerability history is clean, with no recorded CVEs, suggesting a history of secure development or infrequent targeting.

However, significant concerns arise from its attack surface. The presence of 5 AJAX handlers, with 3 of them lacking authentication checks, presents a direct risk. Furthermore, the taint analysis revealed one flow with unsanitized paths, categorized as high severity, which is a critical finding. This indicates that user-supplied data could potentially be used in an unsafe manner, leading to vulnerabilities such as directory traversal or command injection. While the plugin adheres to good practices in many areas, the unprotected AJAX endpoints and the high-severity taint flow represent the most pressing security risks that require immediate attention.

Key Concerns

  • Unprotected AJAX handlers
  • High severity unsanitized taint flow
Vulnerabilities
None known

MWB GF Integration for HubSpot -Sync HubSpot Forms, Contacts, Tickets Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

MWB GF Integration for HubSpot -Sync HubSpot Forms, Contacts, Tickets Release Timeline

v1.0.0Current
Code Analysis
Analyzed Apr 16, 2026

MWB GF Integration for HubSpot -Sync HubSpot Forms, Contacts, Tickets Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
12 prepared
Unescaped Output
12
703 escaped
Nonce Checks
6
Capability Checks
1
File Operations
6
External Requests
2
Bundled Libraries
2

Bundled Libraries

DataTablesSelect2

SQL Query Safety

100% prepared12 total queries

Output Escaping

98% escaped715 total outputs
Data Flows · Security
1 unsanitized

Data Flow Analysis

4 flows1 with unsanitized paths
mwb_gf_integration_admin_init_process (admin/class-mwb-gf-integration-for-hubspot-admin.php:243)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
3 unprotected

MWB GF Integration for HubSpot -Sync HubSpot Forms, Contacts, Tickets Attack Surface

Entry Points5
Unprotected3

AJAX Handlers 5

authwp_ajax_send_onboarding_dataincludes/class-mwb-gf-integration-for-hubspot-onboarding.php:119
noprivwp_ajax_send_onboarding_dataincludes/class-mwb-gf-integration-for-hubspot-onboarding.php:120
authwp_ajax_skip_onboarding_popupincludes/class-mwb-gf-integration-for-hubspot-onboarding.php:123
noprivwp_ajax_skip_onboarding_popupincludes/class-mwb-gf-integration-for-hubspot-onboarding.php:124
authwp_ajax_get_datatable_logsincludes/class-mwb-gf-integration-for-hubspot.php:288
WordPress Hooks 22
actionadmin_enqueue_scriptsincludes/class-mwb-gf-integration-for-hubspot-onboarding.php:111
actionadmin_enqueue_scriptsincludes/class-mwb-gf-integration-for-hubspot-onboarding.php:112
actionadmin_footerincludes/class-mwb-gf-integration-for-hubspot-onboarding.php:113
actionadmin_footerincludes/class-mwb-gf-integration-for-hubspot-onboarding.php:114
filtermwb_on_boarding_form_fieldsincludes/class-mwb-gf-integration-for-hubspot-onboarding.php:115
filtermwb_deactivation_form_fieldsincludes/class-mwb-gf-integration-for-hubspot-onboarding.php:116
actionplugins_loadedincludes/class-mwb-gf-integration-for-hubspot.php:191
actionadmin_enqueue_scriptsincludes/class-mwb-gf-integration-for-hubspot.php:206
actionadmin_enqueue_scriptsincludes/class-mwb-gf-integration-for-hubspot.php:207
actiongform_addon_navigationincludes/class-mwb-gf-integration-for-hubspot.php:210
actionadmin_initincludes/class-mwb-gf-integration-for-hubspot.php:213
filtermwb_helper_valid_frontend_screensincludes/class-mwb-gf-integration-for-hubspot.php:217
filtermwb_deactivation_supported_slugincludes/class-mwb-gf-integration-for-hubspot.php:219
actionwp_enqueue_scriptsincludes/class-mwb-gf-integration-for-hubspot.php:234
actionwp_enqueue_scriptsincludes/class-mwb-gf-integration-for-hubspot.php:235
filtergform_after_submissionincludes/class-mwb-gf-integration-for-hubspot.php:237
actionwp_loadedincludes/class-mwb-gf-integration-for-hubspot.php:240
actioninitincludes/class-mwb-gf-integration-for-hubspot.php:269
actionsave_postincludes/class-mwb-gf-integration-for-hubspot.php:271
actionadmin_initmwb-gf-integration-for-hubspot.php:41
actionadmin_noticesmwb-gf-integration-for-hubspot.php:66
filterplugin_row_metamwb-gf-integration-for-hubspot.php:171
Maintenance & Trust

MWB GF Integration for HubSpot -Sync HubSpot Forms, Contacts, Tickets Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13
Last updatedNov 27, 2021
PHP min version7.3.5
Downloads907

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

MWB GF Integration for HubSpot -Sync HubSpot Forms, Contacts, Tickets Alternatives

MWB CF7 Integration with HubSpot -Sync HubSpot Forms, Contacts, Tickets

MWB CF7 Integration with HubSpot -Sync HubSpot Forms, Contacts, Tickets

mwb-cf7-integration-with-hubspot

A
85

Automate lead generation & nurturing by syncing Contact Form 7 data over HubSpot with this MWB CF7 Integration with HubSpot plugin.

0 No CVEs
CF7 HubSpot Forms Add-on For Contact Form 7

CF7 HubSpot Forms Add-on For Contact Form 7

cf7-hubspot-forms-add-on-for-contact-form-7

A
85

This plugin integrates HubSpot forms with Contact Form 7 forms.

300 No CVEs
WPOP Contact Form 7 to Hubspot

WPOP Contact Form 7 to Hubspot

wpop-contactform-hubspot

A
85

Add Contact Form 7 Data to Hubspot Contact lists.

200 No CVEs
Contact Form user to HubSpot Contacts

Contact Form user to HubSpot Contacts

cf7-user-to-hubspot-contacts

A
85

Plugin sends Contact Form 7 (first name, last name, email, phone) to HubSpot CRM contact.

0 No CVEs
Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms

Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms

cf7-hubspot

A
95

Send Contact Form 7, WPForms, Elementor, Ninja Forms, WPforms, Elementor, Ninja Forms, Contact Form Entries Plugin and many other contact form submiss …

5K 5 CVEs
Developer Profile

MWB GF Integration for HubSpot -Sync HubSpot Forms, Contacts, Tickets Developer Profile

MakeWebBetter

5 plugins · 7K total installs

92
trust score
Avg Security Score
88/100
Avg Patch Time
2 days
View full developer profile
Detection Fingerprints

How We Detect MWB GF Integration for HubSpot -Sync HubSpot Forms, Contacts, Tickets

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/mwb-gf-integration-for-hubspot/admin/images/Demo.svg/wp-content/plugins/mwb-gf-integration-for-hubspot/admin/images/Documentation.svg/wp-content/plugins/mwb-gf-integration-for-hubspot/admin/images/Support.svg
Version Parameters
mwb-gf-integration-for-hubspot/style.css?ver=mwb-gf-integration-for-hubspot/script.js?ver=

HTML / DOM Fingerprints

CSS Classes
mwb-gf-integration-for-hubspot-admin-wrapper
Data Attributes
data-mwb-gf-hs-plugin-url
FAQ

Frequently Asked Questions about MWB GF Integration for HubSpot -Sync HubSpot Forms, Contacts, Tickets