WP-Safety

Freshsales Integration for WordPress Security & Risk Analysis

wordpress.org/plugins/wp-freshsales

Streamline Lead Capture, User Sync, and CRM Integration Effortlessly with WP Freshsales - Your All-in-One Solution

30 active installs v2.2 PHP + WP 5.0+ Updated Mar 6, 2025
freshsalesfreshsales-crmfreshsales-integrationlead-captureuser-sync
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Freshsales Integration for WordPress Safe to Use in 2026?

Generally Safe

Score 92/100

Freshsales Integration for WordPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The wp-freshsales plugin v2.2 exhibits a strong security posture based on the provided static analysis. It boasts a clean attack surface with no identified AJAX handlers, REST API routes, shortcodes, or cron events, significantly reducing potential entry points for attackers. The code also demonstrates good security practices, with all SQL queries utilizing prepared statements and a high percentage of output being properly escaped. Furthermore, there are no reported vulnerabilities (CVEs) for this plugin, indicating a history of responsible development and maintenance.

However, a notable concern is the complete absence of nonce checks and capability checks. While the current attack surface is zero, if any new entry points were to be introduced in future versions, the lack of these fundamental security mechanisms could expose the plugin to vulnerabilities. The external HTTP requests, though not explicitly detailed, represent potential points of failure or data leakage if not handled securely. Despite these minor concerns, the plugin's current state is highly secure.

Key Concerns

  • Missing nonce checks
  • Missing capability checks
Vulnerabilities
None known

Freshsales Integration for WordPress Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Freshsales Integration for WordPress Release Timeline

v2.2Current
v2.1
v2.0.2
v2.0.1
v2.0
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0
Code Analysis
Analyzed Mar 16, 2026

Freshsales Integration for WordPress Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
4 prepared
Unescaped Output
7
32 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
6
Bundled Libraries
0

SQL Query Safety

100% prepared4 total queries

Output Escaping

82% escaped39 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

1 flows
<form-freshsalescrmconfig> (admin\views\form-freshsalescrmconfig.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Freshsales Integration for WordPress Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 2
actionplugins_loadedindex.php:69
actionadmin_noticesindex.php:91
Maintenance & Trust

Freshsales Integration for WordPress Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedMar 6, 2025
PHP min version
Downloads3K

Community Trust

Rating0/100
Number of ratings0
Active installs30
Alternatives

Freshsales Integration for WordPress Alternatives

Salesforce Integration for WordPress

Salesforce Integration for WordPress

wp-salesforce

A
92

Streamline Lead Capture, User Sync, and CRM Integration Effortlessly with Salesforce Integration for WordPress.

30 No CVEs
Contact Form 7 – Freshsales CRM

Contact Form 7 – Freshsales CRM

connect-cf-7-freshsales-crm

A
85

Just another contact form plugin. Simple but flexible.

10 No CVEs
Smart Popup by Supsystic

Smart Popup by Supsystic

popup-by-supsystic

A
91

Create targeted popups for lead capture, event notifications, announcements, and promotions — shown at the right time without disrupting your visitors &hellip;

10K 8 CVEs
HashBar – Announcement, Notification Bar & Popup Campaign

HashBar – Announcement, Notification Bar & Popup Campaign

hashbar-wp-notification-bar

A
99

Create Announcement Bars, Notification Bars & Popup Campaigns with countdown timers, A/B testing, smart targeting & analytics.

7K 2 CVEs
Icegram Collect – Easy Form, Lead Collection and Subscription plugin

Icegram Collect – Easy Form, Lead Collection and Subscription plugin

icegram-rainmaker

A
97

Get readymade contact forms, email subscription forms and custom forms for your website. Choose from beautiful templates and get started within second &hellip;

3K 3 CVEs
Developer Profile

Freshsales Integration for WordPress Developer Profile

Smackcoders Inc.,

23 plugins · 40K total installs

71
trust score
Avg Security Score
88/100
Avg Patch Time
946 days
View full developer profile
Detection Fingerprints

How We Detect Freshsales Integration for WordPress

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wp-freshsales/css/fsales.css/wp-content/plugins/wp-freshsales/css/freshsales-admin.css/wp-content/plugins/wp-freshsales/js/fsales.js/wp-content/plugins/wp-freshsales/js/freshsales-admin.js
Script Paths
/wp-content/plugins/wp-freshsales/js/fsales.js/wp-content/plugins/wp-freshsales/js/freshsales-admin.js
Version Parameters
wp-freshsales/css/fsales.css?ver=wp-freshsales/css/freshsales-admin.css?ver=wp-freshsales/js/fsales.js?ver=wp-freshsales/js/freshsales-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
wp-freshsales-settings
Data Attributes
data-wp-freshsales-form-id
JS Globals
fsalesfsales_obj
FAQ

Frequently Asked Questions about Freshsales Integration for WordPress