PJ Contact Form Security & Risk Analysis
wordpress.org/plugins/pj-contact-formA Simple Plugin That Helps You To Receive Contact Request From Visitors on Your Email And Your Admin Dashboard
Is PJ Contact Form Safe to Use in 2026?
Generally Safe
Score 85/100PJ Contact Form has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "pj-contact-form" plugin version 0.1 exhibits a generally strong security posture based on the provided static analysis. The absence of dangerous functions, file operations, external HTTP requests, and the complete reliance on prepared statements for SQL queries are significant strengths. Furthermore, the high percentage of properly escaped output and the presence of a nonce check indicate good development practices for input validation and output sanitization. The plugin also has no known vulnerabilities, which is a positive sign. However, the complete lack of capability checks is a notable concern, as it means that any user, regardless of their role, could potentially interact with the plugin's functionality through its single shortcode entry point. While the static analysis and taint analysis did not reveal specific vulnerabilities, this absence of role-based access control represents a potential area for future security weaknesses if the shortcode's functionality were to become more complex or handle sensitive data. In conclusion, while the plugin demonstrates good fundamental security practices, the lack of capability checks presents a clear area for improvement to enhance its overall security.
Key Concerns
- Missing capability checks
PJ Contact Form Security Vulnerabilities
PJ Contact Form Release Timeline
PJ Contact Form Code Analysis
Output Escaping
Data Flow Analysis
PJ Contact Form Attack Surface
Shortcodes 1
WordPress Hooks 9
Maintenance & Trust
PJ Contact Form Maintenance & Trust
Maintenance Signals
Community Trust
PJ Contact Form Alternatives
AKM Feedback Form
akm-feedback-form
Just insert the [AKMFORM] shortcode in pages of your WordPress site to display a simple and easy to use Feedback form.
ALIDANI Contact forms
alidani-contact-form
Contact form with visual form builder. Contact form that sends the data to email, to a database list and easy to update the content.
Eazy Contact Form
eazy-contact-form
This is a very easy contact form with validation. Use shortcode [eazy_contact] for page & for widget [eazy_widget] to display form on page or use …
FEP Contact Form
fep-contact-form
FEP Contact Form is a secure contact form to your WordPress site.This can be used with Front End PM or without.
OweBest Contact Form
ob-contact-form
OweBest Contact form is a simple contact form which works out of the box. Use shortcode on posts or pages to generate OweBest Contact Form.
PJ Contact Form Developer Profile
1 plugin · 0 total installs
How We Detect PJ Contact Form
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/pj-contact-form/assets/front-end/css/style.css/wp-content/plugins/pj-contact-form/assets/front-end/js/main.js/wp-content/plugins/pj-contact-form/assets/front-end/js/main.jspj-contact-form/assets/front-end/css/style.css?ver=pj-contact-form/assets/front-end/js/main.js?ver=HTML / DOM Fingerprints
form-groupmy-3data-target="#modal-example"<h1 class="my-4 text-center">Add Email</h1><form method="post" enctype="multipart/form-data" action="<div class="form-group my-3"><input type="text" name="fname" class="form-control" placeholder="First Name">