Does Paytm Gravity Forms have any unpatched vulnerabilities?

No. All known vulnerabilities in Paytm Gravity Forms have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Paytm Gravity Forms compatible with WordPress 4.9.29?

According to WordPress.org data, Paytm Gravity Forms 1.0 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

Is Paytm Gravity Forms compatible with PHP 5.3+?

Paytm Gravity Forms requires PHP 5.3 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Paytm Gravity Forms updated?

Paytm Gravity Forms was last updated on Dec 20, 2018. Frequent updates are generally a positive security signal.

What is Paytm Gravity Forms's security score?

Paytm Gravity Forms has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Paytm Gravity Forms Security & Risk Analysis

wordpress.org/plugins/paytm-gravity-forms

This plugin allows you to accept payments using Paytm. After setup configuration with Payment Form. he will redirect to Paytm website to complete his …

10 active installs v1.0 PHP 5.3+ WP 4.9+ Updated Dec 20, 2018

paytmpaytm-gravity-formspaytm-paymentspaytm-pluginpaywithpaytm

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Paytm Gravity Forms Safe to Use in 2026?

Generally Safe

Score 85/100

Paytm Gravity Forms has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The 'paytm-gravity-forms' plugin version 1.0 shows a mixed security posture. While it demonstrates good practices by using prepared statements for a majority of its SQL queries and has no recorded vulnerabilities or CVEs, there are significant areas of concern. The plugin has a relatively small attack surface, but one of its three AJAX handlers lacks proper authentication checks, which is a critical security gap. Furthermore, the taint analysis revealed flows with unsanitized paths, indicating a potential for data injection vulnerabilities, although these were not categorized as critical or high severity in the provided data.

The lack of any historical vulnerabilities and unpatched CVEs is a positive sign, suggesting that the developers may be proactive or have not yet encountered exploitable flaws. However, the presence of unsanitized paths in taint flows and an unprotected AJAX endpoint are immediate red flags that require attention. The code also shows a worrying trend with only 48% of output being properly escaped, increasing the risk of cross-site scripting (XSS) attacks. Overall, while the plugin has some strengths in its SQL handling and vulnerability history, the unprotected AJAX endpoint and potential taint issues create a moderate risk profile that needs to be addressed.

Key Concerns

Unprotected AJAX handler
Flows with unsanitized paths (Taint Analysis)
Low percentage of properly escaped output

Vulnerabilities

None known

Paytm Gravity Forms Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Paytm Gravity Forms Code Analysis

Dangerous Functions

Raw SQL Queries

16 prepared

Unescaped Output

45 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

80% prepared20 total queries

Output Escaping

48% escaped93 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

4 flows3 with unsanitized paths

stats_page (paytm-form.php:809)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Paytm Gravity Forms Attack Surface

Entry Points3

Unprotected1

AJAX Handlers 3

authwp_ajax_gf_paytm_form_update_feed_activepaytm-form.php:104

authwp_ajax_gf_select_paytm_form_formpaytm-form.php:105

authwp_ajax_gf_paytm_form_load_notificationspaytm-form.php:106

WordPress Hooks 20

actionwppaytm-form.php:18

actioninitpaytm-form.php:20

actionthe_contentpaytm-form.php:24

filtergform_logging_supportedpaytm-form.php:54

filtermembers_get_capabilitiespaytm-form.php:72

filtergform_addon_navigationpaytm-form.php:75

actiongform_payment_statuspaytm-form.php:78

actiongform_entry_infopaytm-form.php:79

actiongform_after_update_entrypaytm-form.php:80

filtergform_tooltipspaytm-form.php:87

filtergform_confirmationpaytm-form.php:118

filtergform_disable_post_creationpaytm-form.php:123

filtergform_disable_user_notificationpaytm-form.php:124

filtergform_disable_admin_notificationpaytm-form.php:125

filtergform_disable_notificationpaytm-form.php:126

filtermwp_premium_update_notificationpaytm-form.php:129

filtermwp_premium_perform_updatepaytm-form.php:130

filtergform_validationpaytm-form.php:134

filtergform_validationpaytm-form.php:137

actionthe_contentpaytm-form.php:2865

Maintenance & Trust

Paytm Gravity Forms Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedDec 20, 2018

PHP min version5.3

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Paytm Gravity Forms Alternatives

Paytm Payment Gateway

paytm-payments

Welcome to the official Paytm Payment Gateway plugin for Woocommerce. Paytm Payment Gateway is ideal for Woocommerce and Wordpress merchants since it …

3K 2 CVEs

Paytm Payment Donation

paytm-donation

A plugin to create Custom form and accept donation payment using paytm payment gateway.

200 1 unpatched

Paytm Digital Downloads

edd-paytm-gateway

A paytm gateway for Easy Digital Downloads. This plugin allow you to accept payments using Paytm. This plugin will add a Paytm Payment option on check …

10 No CVEs

WPeCommerce Paytm Payment

wp-ecommerce-paytm-payment

This plugin allow you to accept payments using Paytm in WPeCommerce. This plugin will add a Paytm Payment option on WPeCommerce checkout page, when us …

0 No CVEs

UPI QR Code Payment Gateway

upi-qr-code-payment-gateway

This Plugin enables WooCommerce shop owners to get direct and instant payments through UPI apps like GPay, PhonePe, Paytm or any banking UPI app.

1K No CVEs

Developer Profile

Paytm Gravity Forms Developer Profile

integrationdevpaytm

5 plugins · 3K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

271 days

View full developer profile

Detection Fingerprints

How We Detect Paytm Gravity Forms

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/paytm-gravity-forms/css/style.css/wp-content/plugins/paytm-gravity-forms/js/gf_paytm_form.js

Script Paths

/wp-content/plugins/paytm-gravity-forms/js/gf_paytm_form.js

Version Parameters

/wp-content/plugins/paytm-gravity-forms/css/style.css?ver=/wp-content/plugins/paytm-gravity-forms/js/gf_paytm_form.js?ver=

HTML / DOM Fingerprints

CSS Classes

paytm-boxgf_paytm_form

Data Attributes

data-gf_paytm_form_update_feed_active

JS Globals

GFPaytmForm

Shortcode Output

<div class="box

FAQ