PLUGIN SECURITY
Is Send Pdf For Contact Form 7 safe?
Known vulnerabilities, PHP compatibility and safer alternatives for the Send Pdf For Contact Form 7 WordPress plugin — checked against WP Clinic's local security database.
Plugin details
- Slug:
send-pdf-for-contact-form-7 - Max supported PHP (analyzed): 8.4
Known vulnerabilities
- Send PDF for Contact Form 7 [send-pdf-for-contact-form-7] < 0.9.2 [Send PDF for Contact Form 7 <= 0.9.1 - Multiple Cross-Site Scripting]
- Send PDF for Contact Form 7 [send-pdf-for-contact-form-7] < 0.9.9.2 [CVE-2023-0143, Send PDF for Contact Form 7 <= 0.9.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode, WordPress Send PDF for Contact Form 7 Plugin < 0.9.9.2 is vulnerable to Cross Site Scripting (XSS), Send PDF for Contact Form 7 < 0.9.9.2 - Contributor+ Stored XSS via Shortcode]
- Send PDF for Contact Form 7 [send-pdf-for-contact-form-7] < 1.0.2.4 [CVE-2024-3585, Send PDF for Contact Form 7 <= 1.0.2.3 - Missing Authorization, WordPress Send PDF for Contact Form 7 Plugin <= 1.0.2.3 is vulnerable to Broken Access Control]
Vulnerabilities are matched against the exact installed version when it's known. Always keep the plugin updated to the latest release.
Safer / more established alternatives
- Database Addon for Contact Form 7 – CFDB7 — 600000+ active installs — max PHP 8.4
- Redirection for Contact Form 7 — 200000+ active installs — max PHP 8.4
- ReCaptcha v2 for Contact Form 7 — 200000+ active installs — max PHP 8.4
- Conditional Fields for Contact Form 7 — 100000+ active installs
- Contact Form 7 – Dynamic Text Extension — 100000+ active installs
Check your own WordPress site
Run a free passive scan now, or create a free account and install the WP Clinic plugin for a deep scan of your whole hosting account and AI-assisted repair.