Does WP Mautic Form Integrator have any unpatched vulnerabilities?

No. All known vulnerabilities in WP Mautic Form Integrator have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Mautic Form Integrator compatible with WordPress 4.8.28?

According to WordPress.org data, WP Mautic Form Integrator 1.0.3 has been tested up to WordPress 4.8.28. Check the plugin's changelog for the latest compatibility information.

How often is WP Mautic Form Integrator updated?

WP Mautic Form Integrator was last updated on Aug 4, 2017. Frequent updates are generally a positive security signal.

What is WP Mautic Form Integrator's security score?

WP Mautic Form Integrator has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Mautic Form Integrator Security & Risk Analysis

wordpress.org/plugins/wp-mautic-form-integrator

Mautic is a marketing automation software and WP Mautic Form Integrator plugin is a bridge between Mautic and several highly used form plugins.

200 active installs v1.0.3 PHP + WP 3.0+ Updated Aug 4, 2017

contact-from-7formidable-formsgravity-formsmauticninja-forms

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Mautic Form Integrator Safe to Use in 2026?

Generally Safe

Score 85/100

WP Mautic Form Integrator has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The wp-mautic-form-integrator plugin exhibits a concerning security posture primarily due to its unprotected entry points. With 3 AJAX handlers and none of them incorporating authentication checks, a significant portion of the plugin's attack surface is exposed to unauthenticated users. This lack of authorization checks on AJAX actions is a critical weakness that could allow unauthorized users to trigger potentially sensitive operations. The taint analysis further highlights this concern, revealing two high-severity flows with unsanitized paths, indicating potential for malicious data injection or manipulation through these exposed entry points. While the plugin uses prepared statements for a majority of its SQL queries and has a decent rate of output escaping, these strengths are overshadowed by the fundamental lack of access control on its AJAX endpoints. The absence of any recorded vulnerabilities in its history is a positive sign, suggesting good development practices in the past or a lack of past targeted attacks. However, the current findings present an immediate and pressing risk that needs to be addressed.

Key Concerns

AJAX handlers without authentication checks
High severity taint flows with unsanitized paths
AJAX handlers without nonce checks
AJAX handlers without capability checks

Vulnerabilities

None known

WP Mautic Form Integrator Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WP Mautic Form Integrator Code Analysis

Dangerous Functions

Raw SQL Queries

22 prepared

Unescaped Output

58 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

71% prepared31 total queries

Output Escaping

79% escaped73 total outputs

Data Flows

4 unsanitized

Data Flow Analysis

7 flows4 with unsanitized paths

haw_mautic_get_forms (wp-mautic-form-integrator.php:841)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

3 unprotected

WP Mautic Form Integrator Attack Surface

Entry Points3

Unprotected3

AJAX Handlers 3

authwp_ajax_haw_mautic_get_formswp-mautic-form-integrator.php:850

authwp_ajax_haw_mautic_get_form_1_fieldswp-mautic-form-integrator.php:866

authwp_ajax_haw_mautic_get_form_2_fieldswp-mautic-form-integrator.php:892

WordPress Hooks 30

filterhaw_mautic_get_form_listmodules\haw-mautic-integration-cf-7.php:29

filterhaw_mautic_get_form_fieldsmodules\haw-mautic-integration-cf-7.php:53

filterhaw_mautic_get_form_titlemodules\haw-mautic-integration-cf-7.php:70

actionwpcf7_mail_sentmodules\haw-mautic-integration-cf-7.php:88

filterhaw_mautic_get_form_listmodules\haw-mautic-integration-formidable-forms.php:35

filterhaw_mautic_get_form_fieldsmodules\haw-mautic-integration-formidable-forms.php:68

filterhaw_mautic_get_form_titlemodules\haw-mautic-integration-formidable-forms.php:90

actionfrm_after_create_entrymodules\haw-mautic-integration-formidable-forms.php:104

filterhaw_mautic_get_form_listmodules\haw-mautic-integration-gravity-forms.php:27

filterhaw_mautic_get_form_fieldsmodules\haw-mautic-integration-gravity-forms.php:65

filterhaw_mautic_get_form_titlemodules\haw-mautic-integration-gravity-forms.php:83

actiongform_after_submissionmodules\haw-mautic-integration-gravity-forms.php:114

filterhaw_mautic_get_form_listmodules\haw-mautic-integration-ninja-forms.php:42

filterhaw_mautic_get_form_fieldsmodules\haw-mautic-integration-ninja-forms.php:77

filterhaw_mautic_get_form_titlemodules\haw-mautic-integration-ninja-forms.php:115

actionninja_forms_after_submissionmodules\haw-mautic-integration-ninja-forms.php:139

actionninja_forms_post_processmodules\haw-mautic-integration-ninja-forms.php:140

filterhaw_mautic_get_form_listmodules\haw-mautic-integration-si-contact-form.php:29

filterhaw_mautic_get_form_fieldsmodules\haw-mautic-integration-si-contact-form.php:51

filterhaw_mautic_get_form_titlemodules\haw-mautic-integration-si-contact-form.php:69

actionfsctf_mail_sentmodules\haw-mautic-integration-si-contact-form.php:82

actionadmin_initwp-mautic-form-integrator.php:49

actionwp_logoutwp-mautic-form-integrator.php:59

actionadmin_headwp-mautic-form-integrator.php:67

actionadmin_enqueue_scriptswp-mautic-form-integrator.php:155

actionadmin_menuwp-mautic-form-integrator.php:189

actionadmin_initwp-mautic-form-integrator.php:448

actiondeactivated_pluginwp-mautic-form-integrator.php:466

actionhaw_mautic_push_data_to_mauticwp-mautic-form-integrator.php:932

actionadmin_noticeswp-mautic-form-integrator.php:1054

Maintenance & Trust

WP Mautic Form Integrator Maintenance & Trust

Maintenance Signals

WordPress version tested4.8.28

Last updatedAug 4, 2017

PHP min version

Downloads11K

Community Trust

Rating72/100

Number of ratings10

Active installs200

Alternatives

WP Mautic Form Integrator Alternatives

WP Contact Slider – Contact Form Slider Widget

wp-contact-slider

Helps you to show slide out contact form to display CF7, Gravity forms, Ninja Forms, WP Forms, display random text/HTML and support some other forms.

10K 2 CVEs

Autopreenchimento de endereço em formulários

cf7-cep-autofill

Preenchimento automático de campos de endereço baseado no CEP informado.

1K No CVEs

BSK Forms Validation

bsk-gravity-forms-custom-validation

This plugin helps you to validate user input and let users submit correct data on Gravity Forms, Formidable Forms. You can apply the defined users to …

100 1 CVE

Inbound Organizer

inbound-organizer

100

Organize form submissions on a Kanban style board with 2 to 5 columns.

0 No CVEs

Proweblook Phone Validator

proweblook-phone-validator

With the Proweblook Phone Validator plugin you can easily verify if a phone number is really valid and callable (https://proweblook.com).

0 No CVEs

Developer Profile

WP Mautic Form Integrator Developer Profile

HireAWiz Web Design

1 plugin · 200 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Mautic Form Integrator

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-mautic-form-integrator/css/main.css/wp-content/plugins/wp-mautic-form-integrator/js/main.js

Script Paths

/wp-content/plugins/wp-mautic-form-integrator/js/main.js

HTML / DOM Fingerprints

JS Globals

haw_mautic_integration_ajax_url

FAQ