Does RT Webhook for Contact Form 7 have any unpatched vulnerabilities?

No. All known vulnerabilities in RT Webhook for Contact Form 7 have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is RT Webhook for Contact Form 7 compatible with WordPress 6.9.4?

According to WordPress.org data, RT Webhook for Contact Form 7 2.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is RT Webhook for Contact Form 7 updated?

RT Webhook for Contact Form 7 was last updated on Unknown. Frequent updates are generally a positive security signal.

What is RT Webhook for Contact Form 7's security score?

RT Webhook for Contact Form 7 has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

RT Webhook for Contact Form 7 Security & Risk Analysis

wordpress.org/plugins/rt-webhook-for-contact-form-7

An advanced webhook integration for Contact Form 7 with field mapping, conditional logic, and custom headers.

10 active installs v2.0.0 PHP + WP 5.0+ Updated Unknown

contact-form-7integrationjsonwebhookzapier

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is RT Webhook for Contact Form 7 Safe to Use in 2026?

Generally Safe

Score 100/100

RT Webhook for Contact Form 7 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The rt-webhook-for-contact-form-7 plugin v2.0.0 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The plugin adheres to several best practices, including the absence of dangerous functions, all SQL queries utilizing prepared statements, and a very high percentage of properly escaped output. Crucially, there are no identified vulnerabilities in its history, and the code analysis reveals no taint flows, indicating a low likelihood of direct code injection or data manipulation risks. The limited attack surface, consisting of only one AJAX handler with a capability check, further enhances its security.

However, a minor concern lies in the external HTTP request. While it's a single request, the security of the external endpoint is outside the plugin's direct control, and if that endpoint were compromised or malformed, it could potentially lead to issues, although this is not directly evidenced in the provided data. The absence of known vulnerabilities and the robust coding practices suggest a well-maintained and secure plugin. The strengths heavily outweigh the minimal potential concerns, making it a relatively low-risk plugin.

Key Concerns

External HTTP request detected

Vulnerabilities

None known

RT Webhook for Contact Form 7 Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

RT Webhook for Contact Form 7 Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

51 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

98% escaped52 total outputs

Attack Surface

RT Webhook for Contact Form 7 Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_rtwc_get_cf7_fieldsadmin\class-rt-webhook-admin.php:26

WordPress Hooks 7

actioninitadmin\class-rt-webhook-admin.php:22

actionadmin_menuadmin\class-rt-webhook-admin.php:23

actionadd_meta_boxesadmin\class-rt-webhook-admin.php:24

actionsave_post_rtwc_webhookadmin\class-rt-webhook-admin.php:25

actionadmin_enqueue_scriptsadmin\class-rt-webhook-admin.php:27

actionwpcf7_before_send_mailincludes\class-rt-webhook-handler.php:22

actionplugins_loadedrt-webhook-for-contact-form-7.php:65

Maintenance & Trust

RT Webhook for Contact Form 7 Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedUnknown

PHP min version

Downloads123

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

RT Webhook for Contact Form 7 Alternatives

RT Webhook for Gravity Forms

rt-webhook-for-gravity-forms

100

An advanced webhook integration for Gravity Forms with field mapping, conditional logic, and custom headers.

0 No CVEs

CF7 to Webhook

cf7-to-zapier

100

Use Contact Form 7 as a trigger to any webhook!

30K No CVEs

Contact Form to Any API

contact-form-to-any-api

Send Contact Form 7 submissions to any API, Webhook or CRM - quick setup, flexible payloads, endpoints and authentication.

9K 4 CVEs

Custom WP Zapier

custom-wp-zapier

Custom WP Zapier is one stop solution for integrating apis to WP.

100 No CVEs

Webhook Configuration CF7

webhook-configuration-cf7

Use Contact Form 7 as a trigger to any webhook!

100 No CVEs

Developer Profile

RT Webhook for Contact Form 7 Developer Profile

raintech357

5 plugins · 20 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect RT Webhook for Contact Form 7

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/rt-webhook-for-contact-form-7/assets/js/admin.js

Script Paths

/wp-content/plugins/rt-webhook-for-contact-form-7/assets/js/admin.js

Version Parameters

rt-webhook-for-contact-form-7/assets/js/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

badge

Data Attributes

data-rtwc-form-iddata-rtwc-field-name

JS Globals

rtwc_admin

REST Endpoints

/wp-json/rtwc-cf7/v1/webhook-listener

FAQ