Does Smart Marketing SMS and Newsletters Forms have any unpatched vulnerabilities?

No. All known vulnerabilities in Smart Marketing SMS and Newsletters Forms have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Smart Marketing SMS and Newsletters Forms compatible with WordPress 6.7.5?

According to WordPress.org data, Smart Marketing SMS and Newsletters Forms 5.1.08 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Smart Marketing SMS and Newsletters Forms compatible with PHP 5.6+?

Smart Marketing SMS and Newsletters Forms requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Smart Marketing SMS and Newsletters Forms updated?

Smart Marketing SMS and Newsletters Forms was last updated on Feb 25, 2026. Frequent updates are generally a positive security signal.

What is Smart Marketing SMS and Newsletters Forms's security score?

Smart Marketing SMS and Newsletters Forms has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Smart Marketing SMS and Newsletters Forms Security & Risk Analysis

wordpress.org/plugins/smart-marketing-for-wp

E-commerce Automation Engine: Product sync, Track & Engage, and abandoned cart recovery via Email and SMS for WooCommerce stores.

1K active installs v5.1.08 PHP 5.6+ WP 4.7+ Updated Feb 25, 2026

e-goiemail-marketingmarketing-automationnewslettersms-marketing

A · Safe

CVEs total2

Unpatched0

Last CVENov 28, 2024

Plugin page Download

Safety Verdict

Is Smart Marketing SMS and Newsletters Forms Safe to Use in 2026?

Generally Safe

Score 99/100

Smart Marketing SMS and Newsletters Forms has a strong security track record. Known vulnerabilities have been patched promptly.

2 known CVEsLast CVE: Nov 28, 2024Updated 1mo ago

Risk Assessment

The 'smart-marketing-for-wp' v5.1.08 plugin exhibits a concerning security posture primarily due to a large number of unprotected entry points. With 41 out of 44 total entry points lacking authentication checks, the plugin exposes a significant attack surface to unauthorized users. While the plugin utilizes prepared statements for a majority of its SQL queries and has a decent output escaping rate, the sheer volume of unprotected AJAX handlers is a critical weakness. Taint analysis reveals two high-severity flows with unsanitized paths, which could lead to various vulnerabilities if exploited. The vulnerability history shows two medium-severity CVEs, one of which was a Cross-site Scripting (XSS) vulnerability, and the plugin's last known vulnerability was recent, indicating a pattern of security issues. While the plugin demonstrates some good security practices like nonce and capability checks, and a good rate of prepared SQL statements, these are overshadowed by the extensive lack of authorization on its entry points and the presence of high-severity taint flows.

Key Concerns

Large attack surface without auth checks
High severity taint flows found
Uses dangerous function unserialize
Past vulnerabilities found (medium severity)
Past XSS vulnerability found

Vulnerabilities

Smart Marketing SMS and Newsletters Forms Security Vulnerabilities

CVEs by Year

1 CVE in 2017

2017

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

2 total CVEs

CVE-2024-53784medium · 4.3Missing Authorization

Smart Marketing SMS and Newsletters Forms <= 5.0.4 - Missing Authorization

Nov 28, 2024 Patched in 5.0.5 (14d)

CVE-2017-18010medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Smart Marketing SMS and Newsletters Forms < 2.0.0 - Cross-Site Scripting

Dec 5, 2017 Patched in 2.0.0 (2240d)

Code Analysis

Analyzed Mar 16, 2026

Smart Marketing SMS and Newsletters Forms Code Analysis

Dangerous Functions

Raw SQL Queries

24 prepared

Unescaped Output

322

1151 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$countryCodes = array_values( unserialize( EFWP_COUNTRY_CODES ) );admin\partials\capture\simple-forms.php:133

unserializeforeach ( unserialize( EFWP_COUNTRY_CODES ) as $key => $value ) {public\class-egoi-for-wp-public.php:416

Bundled Libraries

Select2

SQL Query Safety

62% prepared39 total queries

Output Escaping

78% escaped1473 total outputs

Data Flows

11 unsanitized

Data Flow Analysis

18 flows11 with unsanitized paths

get_form_processed (admin\class-egoi-for-wp-admin.php:1399)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

41 unprotected

Smart Marketing SMS and Newsletters Forms Attack Surface

Entry Points44

Unprotected41

AJAX Handlers 42

authwp_ajax_efwp_get_egoi_formsblocks\shortcode.php:30

authwp_ajax_efwp_add_usersegoi-for-wp.php:66

authwp_ajax_efwp_add_ordersegoi-for-wp.php:73

authwp_ajax_egoi_get_listsegoi-for-wp.php:140

authwp_ajax_efwp_get_form_from_listegoi-for-wp.php:147

authwp_ajax_efwp_generate_subscription_baregoi-for-wp.php:154

noprivwp_ajax_efwp_generate_subscription_baregoi-for-wp.php:155

authwp_ajax_efwp_process_subscriptionegoi-for-wp.php:162

noprivwp_ajax_efwp_process_subscriptionegoi-for-wp.php:163

authwp_ajax_egoi_get_tagsegoi-for-wp.php:287

authwp_ajax_egoi_add_tagegoi-for-wp.php:294

authwp_ajax_egoi_preview_popupegoi-for-wp.php:383

authwp_ajax_smsnf_hide_notificationincludes\class-egoi-for-wp.php:562

authwp_ajax_egoi_change_api_keyincludes\class-egoi-for-wp.php:565

authwp_ajax_efwp_apikey_saveincludes\class-egoi-for-wp.php:566

authwp_ajax_efwp_remove_dataincludes\class-egoi-for-wp.php:567

authwp_ajax_efwp_apikey_changesincludes\class-egoi-for-wp.php:568

authwp_ajax_egoi_synchronize_subsincludes\class-egoi-for-wp.php:578

authwp_ajax_egoi_count_subsincludes\class-egoi-for-wp.php:579

authwp_ajax_smsnf_show_blog_postsincludes\class-egoi-for-wp.php:582

authwp_ajax_smsnf_show_account_info_ajaxincludes\class-egoi-for-wp.php:583

authwp_ajax_smsnf_show_last_campaigns_reportsincludes\class-egoi-for-wp.php:584

authwp_ajax_egoi_deploy_rssincludes\class-egoi-for-wp.php:587

authwp_ajax_egoi_deploy_rss_webpushincludes\class-egoi-for-wp.php:588

authwp_ajax_egoi_rss_campaign_webpushincludes\class-egoi-for-wp.php:589

authwp_ajax_egoi_rss_campaignincludes\class-egoi-for-wp.php:590

authwp_ajax_egoi_get_email_sendersincludes\class-egoi-for-wp.php:591

authwp_ajax_egoi_remove_rssincludes\class-egoi-for-wp.php:592

authwp_ajax_egoi_sync_catalogincludes\class-egoi-for-wp.php:595

authwp_ajax_egoi_variations_catalogincludes\class-egoi-for-wp.php:596

authwp_ajax_egoi_related_products_catalogincludes\class-egoi-for-wp.php:597

authwp_ajax_egoi_related_products_type_catalogincludes\class-egoi-for-wp.php:598

authwp_ajax_egoi_force_import_catalogincludes\class-egoi-for-wp.php:599

authwp_ajax_egoi_create_catalogincludes\class-egoi-for-wp.php:600

authwp_ajax_egoi_delete_catalogincludes\class-egoi-for-wp.php:601

authwp_ajax_egoi_catalog_utilitiesincludes\class-egoi-for-wp.php:602

authwp_ajax_egoi_count_productsincludes\class-egoi-for-wp.php:603

authwp_ajax_egoi_wizard_stepincludes\class-egoi-for-wp.php:604

authwp_ajax_egoi_map_fields_egoiincludes\class-egoi-for-wp.php:605

authwp_ajax_egoi_get_mapping_n_fieldsincludes\class-egoi-for-wp.php:623

authwp_ajax_egoi_simple_form_submitincludes\class-egoi-for-wp.php:685

noprivwp_ajax_egoi_simple_form_submitincludes\class-egoi-for-wp.php:686

Shortcodes 2

[egoi-simple-form] egoi-for-wp.php:233

[egoi_vc_shortcode] egoi-for-wp.php:252

WordPress Hooks 74

actionwpcf7_before_send_mailadmin\class-egoi-for-wp-admin.php:134

actioncomment_postadmin\class-egoi-for-wp-admin.php:137

actioncomment_form_after_fieldsadmin\class-egoi-for-wp-admin.php:138

actionrest_api_initadmin\class-egoi-for-wp-admin.php:141

actionwp_dashboard_setupadmin\class-egoi-for-wp-admin.php:149

actionin_admin_headeradmin\class-egoi-for-wp-admin.php:151

actionadmin_noticesadmin\class-egoi-for-wp-admin.php:155

actionadmin_initadmin\class-egoi-for-wp-admin.php:156

actionadmin_noticesadmin\class-egoi-for-wp-admin.php:159

actionadmin_noticesadmin\class-egoi-for-wp-admin.php:162

actionupgrader_process_completeadmin\class-egoi-for-wp-admin.php:165

actionapi_error_noticeadmin\class-egoi-for-wp-admin.php:168

actioninitblocks\shortcode.php:27

filtercron_schedulesegoi-for-wp.php:86

actionegoi_cron_hookegoi-for-wp.php:95

actionsave_postegoi-for-wp.php:235

actionsiteorigin_widgets_widget_foldersegoi-for-wp.php:259

actionwidgets_initegoi-for-wp.php:262

actioninitegoi-for-wp.php:266

actionelementor/widgets/widgets_registeredegoi-for-wp.php:300

actionelementor/editor/before_enqueue_scriptsegoi-for-wp.php:306

actionwp_feed_optionsegoi-for-wp.php:315

actioninitegoi-for-wp.php:324

actionwoocommerce_product_options_inventory_product_dataegoi-for-wp.php:337

actionwoocommerce_process_product_metaegoi-for-wp.php:351

actionwoocommerce_product_options_inventory_product_dataegoi-for-wp.php:360

actionwoocommerce_process_product_metaegoi-for-wp.php:375

actionwp_headegoi-for-wp.php:398

actionin_admin_headeregoi-for-wp.php:2388

actionplugins_loadedincludes\class-egoi-for-wp.php:538

actionadmin_enqueue_scriptsincludes\class-egoi-for-wp.php:553

actionadmin_enqueue_scriptsincludes\class-egoi-for-wp.php:554

actionadmin_menuincludes\class-egoi-for-wp.php:556

filteradmin_footer_textincludes\class-egoi-for-wp.php:571

actiontransition_post_statusincludes\class-egoi-for-wp.php:606

actionwoocommerce_update_productincludes\class-egoi-for-wp.php:607

actionwoocommerce_order_status_changedincludes\class-egoi-for-wp.php:609

actionwoocommerce_new_orderincludes\class-egoi-for-wp.php:610

actionwoocommerce_product_import_before_importincludes\class-egoi-for-wp.php:612

actionshow_user_profileincludes\class-egoi-for-wp.php:615

filtermanage_users_columnsincludes\class-egoi-for-wp.php:617

filtermanage_users_custom_columnincludes\class-egoi-for-wp.php:618

actiongform_after_submissionincludes\class-egoi-for-wp.php:620

filterwp_mail_fromincludes\class-egoi-for-wp.php:628

filterwp_mail_from_nameincludes\class-egoi-for-wp.php:629

actionphpmailer_initincludes\class-egoi-for-wp.php:630

actionplugins_loadedincludes\class-egoi-for-wp.php:633

actionadd_meta_boxesincludes\class-egoi-for-wp.php:636

actionsave_postincludes\class-egoi-for-wp.php:639

actionpublish_postincludes\class-egoi-for-wp.php:640

actiontransition_post_statusincludes\class-egoi-for-wp.php:641

actionwp_enqueue_scriptsincludes\class-egoi-for-wp.php:669

actionwp_enqueue_scriptsincludes\class-egoi-for-wp.php:670

filterwp_headincludes\class-egoi-for-wp.php:676

filterwp_footerincludes\class-egoi-for-wp.php:678

actionadmin_post_bar_handlerincludes\class-egoi-for-wp.php:680

actionadmin_post_form_handlerincludes\class-egoi-for-wp.php:683

actionwoocommerce_register_formincludes\class-egoi-for-wp.php:689

actionwoocommerce_edit_account_formincludes\class-egoi-for-wp.php:690

actionwoocommerce_after_order_notesincludes\class-egoi-for-wp.php:696

actionwoocommerce_created_customerincludes\class-egoi-for-wp.php:700

actionpersonal_options_updateincludes\class-egoi-for-wp.php:701

actionwoocommerce_save_account_detailsincludes\class-egoi-for-wp.php:702

actionwoocommerce_new_orderincludes\class-egoi-for-wp.php:703

actionwp_enqueue_scriptsincludes\class-egoi-for-wp.php:706

actionwoocommerce_new_orderincludes\class-egoi-for-wp.php:707

actionwoocommerce_thankyouincludes\class-egoi-for-wp.php:708

actionwoocommerce_after_cart_item_quantity_updateincludes\class-egoi-for-wp.php:709

actionwp_headincludes\class-egoi-for-wp.php:712

actionuser_registerincludes\class-egoi-for-wp.php:724

actionprofile_updateincludes\class-egoi-for-wp.php:725

actionapi_error_noticeincludes\class-egoi-for-wp.php:887

filtershortcode_instancepublic\class-egoi-for-wp-public.php:61

filtersiteorigin_widgets_widget_bannerwidgets\egoi-pb-widget\egoi-pb-widget.php:69

Scheduled Events 1

egoi_cron_hook

Maintenance & Trust

Smart Marketing SMS and Newsletters Forms Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedFeb 25, 2026

PHP min version5.6

Downloads177K

Community Trust

Rating100/100

Number of ratings154

Active installs1K

Alternatives

Smart Marketing SMS and Newsletters Forms Alternatives

Brevo for WooCommerce

woocommerce-sendinblue-newsletter-subscription

All-in-one WooCommerce email marketing, automation, SMS, and CRM by Brevo. Grow your store with powerful marketing tools.

30K 3 CVEs

FunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce

wp-marketing-automations

Recover lost revenue with Cart Abandonment Recovery for WooCommerce. Increase retention with Post Purchase Follow-Up Emails.

20K 11 CVEs

CleverReach® WP

cleverreach-wp

Connect your WordPress account with our easy-to-use email software and increase the success of your website or blog with newsletter marketing!

4K 2 CVEs

Newsletter Sign-Up for CleverReach

cleverreach

100

Easily integrate a CleverReach Sign-Up form in your website. Supports widget, shortcode, comment integration and template function

2K No CVEs

Drip for WordPress

email-marketing

Do you sell online? If so you need our new Drip for WooCommerce Plugin instead of this one. It includes your entire product catalog, order history int …

2K No CVEs

Developer Profile

Smart Marketing SMS and Newsletters Forms Developer Profile

E-goi

3 plugins · 1K total installs

trust score

Avg Security Score

95/100

Avg Patch Time

1127 days

View full developer profile

Detection Fingerprints

How We Detect Smart Marketing SMS and Newsletters Forms

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/smart-marketing-for-wp/public/css/components.css/wp-content/plugins/smart-marketing-for-wp/public/css/smart-forms.css/wp-content/plugins/smart-marketing-for-wp/public/css/egoi-style.css/wp-content/plugins/smart-marketing-for-wp/public/js/egoi-public.js/wp-content/plugins/smart-marketing-for-wp/public/js/egoi-forms.js/wp-content/plugins/smart-marketing-for-wp/public/js/smart-forms.js/wp-content/plugins/smart-marketing-for-wp/public/js/components.js

Script Paths

/wp-content/plugins/smart-marketing-for-wp/public/js/egoi-public.js/wp-content/plugins/smart-marketing-for-wp/public/js/egoi-forms.js/wp-content/plugins/smart-marketing-for-wp/public/js/smart-forms.js/wp-content/plugins/smart-marketing-for-wp/public/js/components.js

Version Parameters

/wp-content/plugins/smart-marketing-for-wp/public/css/components.css?ver=/wp-content/plugins/smart-marketing-for-wp/public/css/smart-forms.css?ver=/wp-content/plugins/smart-marketing-for-wp/public/css/egoi-style.css?ver=/wp-content/plugins/smart-marketing-for-wp/public/js/egoi-public.js?ver=/wp-content/plugins/smart-marketing-for-wp/public/js/egoi-forms.js?ver=/wp-content/plugins/smart-marketing-for-wp/public/js/smart-forms.js?ver=/wp-content/plugins/smart-marketing-for-wp/public/js/components.js?ver=

HTML / DOM Fingerprints

CSS Classes

egoi-forms-wrapperegoi-forms-containeregoi-forms-titleegoi-forms-labelegoi-forms-inputegoi-forms-textareaegoi-forms-buttonegoi-forms-select+4 more

HTML Comments

Data Attributes

data-egoi-form-iddata-egoi-list-iddata-egoi-form-actiondata-egoi-form-methoddata-egoi-input-typedata-egoi-required

JS Globals

EgoiPublicegoi_dataEgoiForms

Shortcode Output

[egoi-simple-form]

FAQ

Smart Marketing SMS and Newsletters Forms Security & Risk Analysis

Is Smart Marketing SMS and Newsletters Forms Safe to Use in 2026?

Generally Safe

Key Concerns

Smart Marketing SMS and Newsletters Forms Security Vulnerabilities

CVEs by Year

Severity Breakdown

Smart Marketing SMS and Newsletters Forms Code Analysis

Dangerous Functions Found

Bundled Libraries

SQL Query Safety

Output Escaping

Data Flow Analysis

Smart Marketing SMS and Newsletters Forms Attack Surface

AJAX Handlers 42

Shortcodes 2

Scheduled Events 1

Smart Marketing SMS and Newsletters Forms Maintenance & Trust

Maintenance Signals

Community Trust

Smart Marketing SMS and Newsletters Forms Alternatives

Brevo for WooCommerce

FunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce

CleverReach® WP

Newsletter Sign-Up for CleverReach

Drip for WordPress

Smart Marketing SMS and Newsletters Forms Developer Profile

How We Detect Smart Marketing SMS and Newsletters Forms

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Smart Marketing SMS and Newsletters Forms