WP-Safety

Pluximo Form Blocks Security & Risk Analysis

wordpress.org/plugins/pluximo-form-blocks

Stop struggling with complex form plugins. Build professional forms directly in WordPress block editor with advanced validation and spam protection.

0 active installs v1.1.0 PHP 7.4+ WP 6.7+ Updated Dec 25, 2025
blockblockscontactformvalidation
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Pluximo Form Blocks Safe to Use in 2026?

Generally Safe

Score 100/100

Pluximo Form Blocks has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

The pluximo-form-blocks plugin v1.1.0 demonstrates a strong security posture based on the provided static analysis and vulnerability history. The code adheres to many best practices, including the exclusive use of prepared statements for all SQL queries and a very high percentage of properly escaped output. The absence of dangerous functions, file operations, and external HTTP requests is also reassuring. Furthermore, the plugin exhibits a clean vulnerability history with no recorded CVEs, indicating a low likelihood of known exploitable flaws.

While the overall security is good, there are a few minor areas for improvement. The presence of one AJAX handler without an explicit authentication check, though not currently exploitable due to the absence of identified taint flows, represents a potential future risk if data handling within that handler changes. The limited number of nonce and capability checks (2 each) could potentially be expanded if the functionality of the plugin warrants it, although with a small attack surface and no identified vulnerabilities, this is a low priority. The lack of any taint analysis flows analyzed is a neutral observation; it means no critical or high-severity vulnerabilities were *found*, not necessarily that none exist if more thorough analysis were performed.

In conclusion, pluximo-form-blocks v1.1.0 appears to be a secure plugin. Its strengths lie in its robust SQL handling, proper output escaping, and a clean vulnerability record. The primary area of potential concern, albeit minor and currently mitigated by a lack of exploitable taint, is the single unprotected AJAX endpoint. Continued vigilance in development and security reviews is recommended for any plugin.

Key Concerns

  • AJAX handler without auth check
Vulnerabilities
None known

Pluximo Form Blocks Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Pluximo Form Blocks Release Timeline

v1.1.0Current
v1.0.0
Code Analysis
Analyzed Mar 17, 2026

Pluximo Form Blocks Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
8 prepared
Unescaped Output
2
57 escaped
Nonce Checks
2
Capability Checks
2
File Operations
0
External Requests
3
Bundled Libraries
0

SQL Query Safety

100% prepared8 total queries

Output Escaping

97% escaped59 total outputs
Attack Surface

Pluximo Form Blocks Attack Surface

Entry Points1
Unprotected0

AJAX Handlers 1

authwp_ajax_pluximo_turnstile_verifyincludes\class-pluximo-form-blocks-settings.php:39
WordPress Hooks 10
actionrest_api_initincludes\class-pluximo-form-blocks-handler.php:44
actionwp_enqueue_scriptsincludes\class-pluximo-form-blocks-handler.php:45
actioninitincludes\class-pluximo-form-blocks-post-type.php:26
actionadd_meta_boxesincludes\class-pluximo-form-blocks-post-type.php:27
actionadmin_menuincludes\class-pluximo-form-blocks-settings.php:36
actionadmin_initincludes\class-pluximo-form-blocks-settings.php:37
actionadmin_enqueue_scriptsincludes\class-pluximo-form-blocks-settings.php:38
actionplugins_loadedpluximo-form-blocks.php:23
actionadmin_noticespluximo-form-blocks.php:36
actioninitpluximo-form-blocks.php:132
Maintenance & Trust

Pluximo Form Blocks Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 25, 2025
PHP min version7.4
Downloads205

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Pluximo Form Blocks Alternatives

SiteOrigin Widgets Bundle

SiteOrigin Widgets Bundle

so-widgets-bundle

A
95

Essential elements for modern websites. Add buttons, sliders, heroes, maps, images, carousels, features, icons, more. Create dynamic pages easily.

400K 11 CVEs
JetFormBuilder — Dynamic Blocks Form Builder

JetFormBuilder — Dynamic Blocks Form Builder

jetformbuilder

A
88

Advanced form builder plugin for Gutenberg. Create forms from the ground up, customize the existing ones, and style them up – all in one editor.

90K 8 CVEs
Email Validation Filter for Contact Form 7

Email Validation Filter for Contact Form 7

email-validation-filter-for-contact-form-7

A
92

Added mail validation function to Contact Form 7. Protected by rejection filter, RFC filter, and DNS filter.

300 No CVEs
Block Editor Kit for Contact Form 7 – CF7 Blocks

Block Editor Kit for Contact Form 7 – CF7 Blocks

cf7-blocks

A
85

CF7 Blocks brings the power of the WordPress block editor to Contact Form 7, allowing you to easily create and customize forms within the familiar int …

80 No CVEs
Nelio Forms

Nelio Forms

nelio-forms

A
100

An intuitive form builder based on open WordPress technologies

60 No CVEs
Developer Profile

Pluximo Form Blocks Developer Profile

Pluximo

3 plugins · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Pluximo Form Blocks

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/pluximo-form-blocks/build/blocks/button/index.js/wp-content/plugins/pluximo-form-blocks/build/blocks/button/style.css/wp-content/plugins/pluximo-form-blocks/build/blocks/button/editor.css/wp-content/plugins/pluximo-form-blocks/build/blocks/form/index.js/wp-content/plugins/pluximo-form-blocks/build/blocks/form/style.css/wp-content/plugins/pluximo-form-blocks/build/blocks/form/editor.css/wp-content/plugins/pluximo-form-blocks/build/blocks/input-hidden/index.js/wp-content/plugins/pluximo-form-blocks/build/blocks/input-hidden/style.css+10 more
Script Paths
/wp-content/plugins/pluximo-form-blocks/build/index.js
Version Parameters
pluximo-form-blocks/build/index.js?ver=pluximo-form-blocks/build/blocks/button/index.js?ver=pluximo-form-blocks/build/blocks/button/style.css?ver=pluximo-form-blocks/build/blocks/button/editor.css?ver=pluximo-form-blocks/build/blocks/form/index.js?ver=pluximo-form-blocks/build/blocks/form/style.css?ver=pluximo-form-blocks/build/blocks/form/editor.css?ver=pluximo-form-blocks/build/blocks/input-hidden/index.js?ver=pluximo-form-blocks/build/blocks/input-hidden/style.css?ver=pluximo-form-blocks/build/blocks/input-hidden/editor.css?ver=pluximo-form-blocks/build/blocks/input-text/index.js?ver=pluximo-form-blocks/build/blocks/input-text/style.css?ver=pluximo-form-blocks/build/blocks/input-text/editor.css?ver=pluximo-form-blocks/build/blocks/input-textarea/index.js?ver=pluximo-form-blocks/build/blocks/input-textarea/style.css?ver=pluximo-form-blocks/build/blocks/input-textarea/editor.css?ver=pluximo-form-blocks/build/blocks/submit/index.js?ver=pluximo-form-blocks/build/blocks/submit/style.css?ver=pluximo-form-blocks/build/blocks/submit/editor.css?ver=

HTML / DOM Fingerprints

CSS Classes
pluximo-form-blocks-buttonpluximo-form-blocks-formpluximo-form-blocks-inputpluximo-form-blocks-input-hiddenpluximo-form-blocks-input-textpluximo-form-blocks-input-textareapluximo-form-blocks-submit
Data Attributes
data-form-iddata-block-id
JS Globals
pluximo_form_blocks_submit_form
REST Endpoints
/wp-json/pluximo-form-blocks/v1/submit
FAQ

Frequently Asked Questions about Pluximo Form Blocks