WP-Safety

Productive Forms – Contact Us, Newsletter Opt-ins & Content Publishing Security & Risk Analysis

wordpress.org/plugins/productive-forms

Prebuilt 'Contact Us' pages, newsletter opt-ins, content sliders, FAQs, team members, and testimonials using Elementor and Gutenberg.

10 active installs v1.1.42 PHP 7.0+ WP 5.4+ Updated Apr 13, 2026
contact-formcontact-us-pagegoogle-mapsnewsletter-opt-in-formnewsletter-subscription
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Productive Forms – Contact Us, Newsletter Opt-ins & Content Publishing Safe to Use in 2026?

Generally Safe

Score 100/100

Productive Forms – Contact Us, Newsletter Opt-ins & Content Publishing has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The "productive-forms" plugin v1.1.39 exhibits a generally strong security posture, with excellent practices in place for SQL queries and output escaping. The high percentage of properly escaped outputs and the exclusive use of prepared statements for all SQL queries are significant strengths. The plugin also demonstrates a good awareness of security controls with a substantial number of nonce and capability checks. However, the presence of two AJAX handlers lacking authentication checks presents a notable risk, as these could potentially be exploited by unauthenticated users to trigger unintended actions.

The taint analysis reveals one high-severity flow, which warrants further investigation. While the specific nature of this flow isn't detailed, any high-severity issue poses a risk to data integrity or system security. The history of zero known CVEs is a positive indicator of the plugin's past security diligence, suggesting that previous versions have not been found to be vulnerable. This, combined with the generally robust coding practices, indicates a developer who is likely security-conscious.

In conclusion, "productive-forms" has several strong security foundations. The primary weaknesses identified are the unprotected AJAX endpoints and the high-severity taint flow. Addressing these specific concerns should be a priority to further solidify the plugin's security. The absence of historical vulnerabilities is a very positive sign, but it doesn't negate the need to address current code analysis findings.

Key Concerns

  • Unprotected AJAX handlers
  • High severity taint flow
Vulnerabilities
None known

Productive Forms – Contact Us, Newsletter Opt-ins & Content Publishing Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Productive Forms – Contact Us, Newsletter Opt-ins & Content Publishing Release Timeline

v1.1.42Current
v1.1.41
v1.1.40
v1.1.39
v1.1.38
v1.1.37
v1.1.36
v1.1.35
v1.1.34
v1.1.33
v1.1.32
v1.1.31
v1.1.30
v1.1.29
v1.1.28
v1.1.27
v1.1.26
v1.1.25
v1.1.23
v1.1.22
Code Analysis
Analyzed Mar 16, 2026

Productive Forms – Contact Us, Newsletter Opt-ins & Content Publishing Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
10 prepared
Unescaped Output
577
2549 escaped
Nonce Checks
13
Capability Checks
12
File Operations
1
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared10 total queries

Output Escaping

82% escaped3126 total outputs
Data Flows · Security
3 unsanitized

Data Flow Analysis

12 flows3 with unsanitized paths
productive_forms_plugin_options_render_page_menu_html (admin\standard\options\settings.php:89)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Productive Forms – Contact Us, Newsletter Opt-ins & Content Publishing Attack Surface

Entry Points27
Unprotected2

AJAX Handlers 14

authwp_ajax_productiveminds_wp_ajax_install_pluginadmin\common\options\global\db-admin\global-transactions.php:16
noprivwp_ajax_productiveminds_wp_ajax_install_pluginadmin\common\options\global\db-admin\global-transactions.php:17
authwp_ajax_productive_global_do_activate_plugin_ajaxadmin\common\options\global\db-admin\global-transactions.php:86
noprivwp_ajax_productive_global_do_activate_plugin_ajaxadmin\common\options\global\db-admin\global-transactions.php:87
authwp_ajax_productive_global_do_notice_dismissal_ajaxadmin\common\options\global\db-admin\global-transactions.php:147
noprivwp_ajax_productive_global_do_notice_dismissal_ajaxadmin\common\options\global\db-admin\global-transactions.php:148
authwp_ajax_productive_forms_process_contact_deleteincludes\common\db\db_transactions.php:53
noprivwp_ajax_productive_forms_process_contact_deleteincludes\common\db\db_transactions.php:54
authwp_ajax_productive_forms_process_g_recaptcha_v3_verify_ajaxincludes\common\db\db_transactions.php:296
noprivwp_ajax_productive_forms_process_g_recaptcha_v3_verify_ajaxincludes\common\db\db_transactions.php:297
authwp_ajax_productive_forms_process_message_contact_ajaxincludes\common\db\db_transactions.php:390
noprivwp_ajax_productive_forms_process_message_contact_ajaxincludes\common\db\db_transactions.php:391
authwp_ajax_productive_forms_process_message_newsletter_ajaxincludes\common\db\db_transactions.php:484
noprivwp_ajax_productive_forms_process_message_newsletter_ajaxincludes\common\db\db_transactions.php:485

Shortcodes 13

[productive_contact_form] includes\common\form-contact.php:200
[productive_contact_page] includes\common\form-contact.php:208
[productive_newsletter_form] includes\common\form-newsletter.php:180
[productive_newsletter_form_landscape] includes\common\form-newsletter.php:361
[productive_forms_sc_header_contact_section] includes\common\module\header-contact-section.php:73
[productive_contact_form] includes\common\render\productive-render-contact-us-page.php:185
[productive_contact_form_ajax] includes\common\render\productive-render-contact-us-page.php:186
[productive_contact_page] includes\common\render\productive-render-contact-us-page.php:236
[productive_contact_page_ajax] includes\common\render\productive-render-contact-us-page.php:237
[productive_newsletter_form] includes\common\render\productive-render-newsletter-element.php:152
[productive_newsletter_form_ajax] includes\common\render\productive-render-newsletter-element.php:153
[productive_newsletter_form_landscape] includes\common\render\productive-render-newsletter-element.php:161
[productive_newsletter_form_ajax_landscape] includes\common\render\productive-render-newsletter-element.php:162
WordPress Hooks 131
actionproductive_global_render_forms_social_facebookadmin\common\options\functions-options.php:150
actionproductive_global_render_forms_social_youtubeadmin\common\options\functions-options.php:174
actionproductive_global_render_forms_social_twitteradmin\common\options\functions-options.php:198
actionproductive_global_render_forms_social_pinterestadmin\common\options\functions-options.php:222
actionproductive_global_render_forms_social_instagramadmin\common\options\functions-options.php:246
actionproductive_global_render_forms_contact_whatsappadmin\common\options\functions-options.php:273
actionproductive_global_render_forms_social_media_blockadmin\common\options\functions-options.php:396
actionproductive_global_render_forms_contact_what_to_display_in_floating_buttonsadmin\common\options\functions-options.php:527
actionproductive_global_render_forms_contact_floating_buttons_placement_verticaladmin\common\options\functions-options.php:545
actionproductive_global_render_forms_contact_floating_buttons_placement_horizontaladmin\common\options\functions-options.php:563
actionproductive_global_render_forms_contact_emailadmin\common\options\functions-options.php:604
actionproductive_global_render_forms_contact_phoneadmin\common\options\functions-options.php:629
actionproductive_global_render_forms_contact_email_and_phoneadmin\common\options\functions-options.php:668
actionproductive_global_render_forms_contact_email_icon_onlyadmin\common\options\functions-options.php:688
actionproductive_global_render_forms_contact_phone_icon_onlyadmin\common\options\functions-options.php:710
actionproductive_global_render_forms_contact_whatsapp_icon_onlyadmin\common\options\functions-options.php:734
actionproductive_global_render_forms_contact_email_themesadmin\common\options\functions-options.php:761
actionproductive_global_render_forms_contact_phone_themesadmin\common\options\functions-options.php:786
actionproductive_global_render_forms_contact_whatsapp_themesadmin\common\options\functions-options.php:815
actionproductive_forms_render_contact_email_and_phone_themesadmin\common\options\functions-options.php:873
actionproductive_global_render_forms_contact_full_address_per_lineadmin\common\options\functions-options.php:945
actionproductive_global_render_forms_contact_full_address_all_in_one_lineadmin\common\options\functions-options.php:1015
actionproductive_global_render_forms_contact_full_address_textonly_all_in_one_lineadmin\common\options\functions-options.php:1092
actionproductive_global_render_forms_post_contact_icons_color_addressinfoadmin\common\options\functions-options.php:1163
actionproductive_global_render_forms_contact_business_hours_headingadmin\common\options\functions-options.php:1195
actionproductive_global_render_forms_contact_business_hours_mon_friadmin\common\options\functions-options.php:1213
actionproductive_global_render_forms_contact_business_hours_satadmin\common\options\functions-options.php:1231
actionproductive_global_render_forms_contact_business_hours_sunadmin\common\options\functions-options.php:1249
actionproductive_global_render_forms_contact_business_hours_full_footer_all_in_one_lineadmin\common\options\functions-options.php:1307
actionproductive_global_render_forms_contact_business_hours_full_footer_per_lineadmin\common\options\functions-options.php:1357
actionproductive_global_render_forms_contact_intro_1admin\common\options\functions-options.php:1389
actionproductive_global_render_forms_contact_ask_for_visitor_phoneadmin\common\options\functions-options.php:1404
actionproductive_global_render_forms_contact_copy_contactus_email_to_visitoradmin\common\options\functions-options.php:1419
actionproductive_global_render_forms_contact_how_to_display_contact_name_fieldadmin\common\options\functions-options.php:1435
actionproductive_global_render_forms_contact_how_to_process_contact_submissionsadmin\common\options\functions-options.php:1451
actionproductive_global_render_forms_contact_consent_checkbox_text_contactadmin\common\options\functions-options.php:1484
actionproductive_global_render_forms_integration_google_map_api_keyadmin\common\options\functions-options.php:1591
actionproductive_global_render_forms_integration_google_map_longitudeadmin\common\options\functions-options.php:1607
actionproductive_global_render_forms_integration_google_map_latitudeadmin\common\options\functions-options.php:1623
actionproductive_global_render_forms_newsletter_headingadmin\common\options\functions-options.php:1681
actionproductive_global_render_forms_newsletter_introadmin\common\options\functions-options.php:1703
actionproductive_global_render_forms_newsletter_copy_newsletter_email_to_visitoradmin\common\options\functions-options.php:1719
actionproductive_global_render_forms_newsletter_how_to_display_newsletter_name_fieldadmin\common\options\functions-options.php:1735
actionproductive_global_render_forms_newsletter_how_to_process_newsletter_submissionsadmin\common\options\functions-options.php:1751
actionproductive_global_render_forms_newsletter_consent_checkbox_text_newsletteradmin\common\options\functions-options.php:1813
actionproductive_global_render_forms_widget_contact_buttonadmin\common\options\functions-options.php:1919
actionproductive_global_render_forms_widget_newsletter_buttonadmin\common\options\functions-options.php:1934
actioncustomize_registeradmin\common\options\global\customiser\productive-global-customiser-cc-palette-overrides.php:185
actioncustomize_registeradmin\common\options\global\customiser\productive-global-customiser-common.php:189
actioncustomize_registeradmin\common\options\global\customiser\productive-global-customiser-custom-color-palette.php:363
actioninitadmin\common\options\global\global-settings-admin.php:172
actionadmin_enqueue_scriptsadmin\common\options\global\global-settings-admin.php:729
actionproductive_global_render_content_wrapper_full_full_topadmin\common\options\global\global-settings-admin.php:2941
actionproductive_global_render_content_wrapper_full_full_bottomadmin\common\options\global\global-settings-admin.php:2952
actionproductive_global_render_content_wrapper_full_topadmin\common\options\global\global-settings-admin.php:2966
actionproductive_global_render_content_wrapper_full_bottomadmin\common\options\global\global-settings-admin.php:2979
actionproductive_global_render_content_wrapper_full_without_uno_topadmin\common\options\global\global-settings-admin.php:2992
actionproductive_global_render_content_wrapper_full_without_uno_bottomadmin\common\options\global\global-settings-admin.php:3004
actionproductive_global_render_content_wrapper_standard_topadmin\common\options\global\global-settings-admin.php:3017
actionproductive_global_render_content_wrapper_standard_bottomadmin\common\options\global\global-settings-admin.php:3029
actionproductive_global_render_hero_content_titleadmin\common\options\global\global-settings-admin.php:3127
actionproductive_global_render_hero_content_mainadmin\common\options\global\global-settings-admin.php:3137
actionproductive_global_render_hero_content_auxiliaryadmin\common\options\global\global-settings-admin.php:3156
actionproductive_global_render_post_thumbnailadmin\common\options\global\global-settings-admin.php:3308
actionwp_footeradmin\common\options\global\global-settings-admin.php:3611
actionwp_footeradmin\common\options\global\global-settings-admin.php:4280
filterwp_kses_allowed_htmladmin\common\options\global\productiveminds-icons.php:364
actionproductive_global_render_social_sharesadmin\common\options\global\productiveminds-social-share.php:17
actionproductive_global_do_render_the_social_sharesadmin\common\options\global\productiveminds-social-share.php:558
actionadmin_noticesadmin\common\options\partials\section-contact.php:32
actionadmin_noticesadmin\common\options\partials\section-contact.php:37
actionadmin_noticesadmin\common\options\partials\section-contact.php:40
actionwp_loadedadmin\standard\options\settings.php:26
actionadmin_menuadmin\standard\options\settings.php:73
actionadmin_initadmin\standard\options\settings.php:87
actioncustomize_registerincludes\common\customiser\productive-plugin-customiser-common.php:187
actioncustomize_registerincludes\common\customiser\productive-plugin-customiser-header-contact-section.php:637
actioncustomize_registerincludes\common\customiser\productive-plugin-customiser-newsletter.php:234
actionplugins_loadedincludes\common\db\db_upgrade.php:22
actionproductive_newsletter_formincludes\common\form-newsletter.php:179
actionproductive_newsletter_form_landscapeincludes\common\form-newsletter.php:360
actioninitincludes\common\gutenberg\blocks\contact-page\render.php:15
actioninitincludes\common\gutenberg\blocks\google-map\render.php:15
actioninitincludes\common\gutenberg\blocks\newsletter-element\render.php:15
actionproductive_forms_actn_header_contact_sectionincludes\common\module\header-contact-section.php:74
actionenqueue_block_editor_assetsincludes\common\post-type\blocks\render-common-modules.php:34
actionenqueue_block_editor_assetsincludes\common\post-type\blocks\render-common-modules.php:36
actioncurrent_screenincludes\common\post-type\blocks\render-common-modules.php:39
actionenqueue_block_editor_assetsincludes\common\post-type\blocks\render.php:34
actionenqueue_block_editor_assetsincludes\common\post-type\blocks\render.php:36
actioncurrent_screenincludes\common\post-type\blocks\render.php:39
actioninitincludes\common\post-type\blog-meta.php:42
actionsave_postincludes\common\post-type\blog-meta.php:143
actioninitincludes\common\post-type\contact-element.php:68
actionsave_postincludes\common\post-type\contact-element.php:176
filtermanage_edit-pro_contact_element_columnsincludes\common\post-type\contact-element.php:190
actionmanage_pages_custom_columnincludes\common\post-type\contact-element.php:213
actioninitincludes\common\post-type\contact-element.php:247
actioninitincludes\common\post-type\contact.php:66
actionsave_postincludes\common\post-type\contact.php:174
filtermanage_edit-contact_columnsincludes\common\post-type\contact.php:188
actionmanage_pages_custom_columnincludes\common\post-type\contact.php:217
actioninitincludes\common\post-type\content-element.php:68
actioninitincludes\common\post-type\content-element.php:112
actionsave_postincludes\common\post-type\content-element.php:286
filtermanage_edit-pro_content_element_columnsincludes\common\post-type\content-element.php:302
actionmanage_pages_custom_columnincludes\common\post-type\content-element.php:341
actioninitincludes\common\post-type\content-element.php:375
actionwidgets_initincludes\common\productive-widget-form-contact.php:105
actionwidgets_initincludes\common\productive-widget-form-newsletter.php:124
actioninitincludes\common\productiveminds-forms-options.php:51
actionwp_enqueue_scriptsincludes\standard\functions.php:116
actionenqueue_block_assetsincludes\standard\functions.php:121
actioninitincludes\standard\gutenberg\blocks\contact-page\render.php:15
filterblock_categories_allincludes\standard\gutenberg\productive-gutenberg.php:32
filterblock_categoriesincludes\standard\gutenberg\productive-gutenberg.php:34
actionwp_enqueue_scriptsincludes\start.php:86
actionenqueue_block_assetsincludes\start.php:91
actionadmin_enqueue_scriptsincludes\start.php:125
actioninitincludes\start.php:137
actiondisplay_plugin_placeholder_imageincludes\start.php:171
actionwp_footerincludes\start.php:201
actionwp_footerincludes\start.php:230
actionelementor/elements/categories_registeredstandard\elementor\productive-elementor.php:27
actionelementor/dynamic_tags/registerstandard\elementor\productive-elementor.php:44
actionelementor/widgets/registerstandard\elementor\productive-elementor.php:86
actionwp_enqueue_scriptsstandard\elementor\productive-elementor.php:105
filterblock_categories_allstandard\gutenberg\productive-gutenberg.php:32
filterblock_categoriesstandard\gutenberg\productive-gutenberg.php:34
actionwp_enqueue_scriptsstandard\includes\functions.php:136
actionenqueue_block_assetsstandard\includes\functions.php:141
Maintenance & Trust

Productive Forms – Contact Us, Newsletter Opt-ins & Content Publishing Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedApr 13, 2026
PHP min version7.0
Downloads8K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Productive Forms – Contact Us, Newsletter Opt-ins & Content Publishing Alternatives

Map Field for Contact Form 7

Map Field for Contact Form 7

map-field-for-contact-form-7

A
100

Add a Google Maps autocomplete address field with a live interactive map to any Contact Form 7 form. Supports draggable marker, address components, an …

60 No CVEs
Valhalla CF – Simple and Effective Contact Form with Google Maps

Valhalla CF – Simple and Effective Contact Form with Google Maps

valhalla-cf

A
85

A responsive contact form with Google Maps and CAPTCHA. It's simple but effective, and you can customize labels, messages, and colors in the Word …

0 No CVEs
Contact Form 7

Contact Form 7

contact-form-7

A
92

Just another contact form plugin. Simple but flexible.

10.0M 8 CVEs
Akismet Anti-spam: Spam Protection

Akismet Anti-spam: Spam Protection

akismet

A
99

The best anti-spam protection to block spam comments and spam in a contact form. The most trusted antispam solution for WordPress and WooCommerce.

6.0M 2 CVEs
WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More

WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More

wpforms-lite

A
88

The best WordPress contact form plugin. Drag & Drop form builder to create beautiful contact forms, payment forms, & other custom forms.

6.0M 16 CVEs
Developer Profile

Productive Forms – Contact Us, Newsletter Opt-ins & Content Publishing Developer Profile

Productive Minds

10 plugins · 190 total installs

99
trust score
Avg Security Score
98/100
Avg Patch Time
1 days
View full developer profile
Detection Fingerprints

How We Detect Productive Forms – Contact Us, Newsletter Opt-ins & Content Publishing

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/productive-forms/assets/css/backend-style.css/wp-content/plugins/productive-forms/assets/css/backend-script.css/wp-content/plugins/productive-forms/assets/css/frontend-style.css/wp-content/plugins/productive-forms/assets/js/backend-script.js/wp-content/plugins/productive-forms/assets/js/frontend-script.js
Script Paths
/wp-content/plugins/productive-forms/assets/js/backend-script.js/wp-content/plugins/productive-forms/assets/js/frontend-script.js
Version Parameters
productive-forms/assets/css/backend-style.css?ver=productive-forms/assets/css/backend-script.css?ver=productive-forms/assets/css/frontend-style.css?ver=productive-forms/assets/js/backend-script.js?ver=productive-forms/assets/js/frontend-script.js?ver=

HTML / DOM Fingerprints

CSS Classes
productive-forms-wrapproductive-forms-backend-containerproductive-forms-frontend-container
Data Attributes
data-productive-forms-iddata-productive-forms-nonce
JS Globals
ProductiveFormsBackendProductiveFormsFrontend
REST Endpoints
/wp-json/productive-forms/v1/submit/wp-json/productive-forms/v1/get-form
Shortcode Output
[productive_form[productive_floating_form
FAQ

Frequently Asked Questions about Productive Forms – Contact Us, Newsletter Opt-ins & Content Publishing