Referrer Input for Contact Form 7 Security & Risk Analysis
wordpress.org/plugins/referrer-input-for-contact-form-7Contact Form 7 Addon that creates a cache-resistant input that contains the URL of the page the user visited before the contact form page.
Is Referrer Input for Contact Form 7 Safe to Use in 2026?
Generally Safe
Score 85/100Referrer Input for Contact Form 7 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
Based on the static analysis, the "referrer-input-for-contact-form-7" plugin version 1.0.1 presents a generally strong security posture. The absence of any identified dangerous functions, SQL injection risks, file operations, or external HTTP requests is highly positive. Furthermore, the code demonstrates good practices with 100% of SQL queries using prepared statements and a very high rate of properly escaped output. The presence of at least one capability check also indicates an awareness of access control. The plugin's attack surface is reported as zero, which is an excellent sign regarding entry points.
The taint analysis shows no identified flows, further reinforcing the impression of secure coding. The vulnerability history being completely clean with no recorded CVEs, regardless of severity, strongly suggests a well-maintained and secure codebase over time. The plugin's adherence to secure coding principles and lack of historical security incidents make it appear to be a low-risk component.
In conclusion, this plugin demonstrates a commendable focus on security. The reported metrics are overwhelmingly positive, indicating robust security practices and a lack of exploitable vulnerabilities in the analyzed version. While no code is perfectly secure, the data provided paints a picture of a highly trustworthy plugin.
Key Concerns
- No identified critical or high severity issues
- No taint flows with unsanitized paths
- 100% SQL queries using prepared statements
- 96% properly escaped output
- No dangerous functions
- No file operations
- No external HTTP requests
- Zero attack surface
- No known CVEs
Referrer Input for Contact Form 7 Security Vulnerabilities
Referrer Input for Contact Form 7 Code Analysis
Output Escaping
Referrer Input for Contact Form 7 Attack Surface
WordPress Hooks 4
Maintenance & Trust
Referrer Input for Contact Form 7 Maintenance & Trust
Maintenance Signals
Community Trust
Referrer Input for Contact Form 7 Alternatives
Custom CSS/JS
wp-custom-cssjs
WP Custom CSS JS plugin allows you to add any HTML, CSS, Javascript, jQuery or Tracking Pixel easily on your wordpress site right from your dashboard.
Conditionally Load CF7
cf7-conditional-load
Load Contact Form 7 & select CF7-related plugin scripts & styles only where needed.
Same Height
same-height
Force different parts of your content to the same height. Very useful if you want to present to boxes side by side. Responsive and bootstrap-friendly.
Custom WP CSS & JS
custom-wp-css-js
A lightweight plugin to add custom CSS, JS/Javascript to any theme. This plugin also gives you an ability to insert JS in header or footer.
Side by Side
side-by-side
This plugin allows you to put two images next to each other. When you move your mouse over them, the line that separates them will move with it!
Referrer Input for Contact Form 7 Developer Profile
3 plugins · 630 total installs
How We Detect Referrer Input for Contact Form 7
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/referrer-input-for-contact-form-7/script.js/wp-content/plugins/referrer-input-for-contact-form-7/script.min.js/wp-content/plugins/referrer-input-for-contact-form-7/script.js/wp-content/plugins/referrer-input-for-contact-form-7/script.min.jsreferrer-input-for-contact-form-7/script.js?ver=1.0.0HTML / DOM Fingerprints
cf7-rfrcf7rfr_referrer<input type="hidden" name="