PDF for Contact Form 7 + Drag and Drop Template Builder

PDF Builder for Contact Form 7 helps you create custom PDF documents from form submissions using a powerful drag-and-drop template builder.

v7.1.0add-ons.orgUpdated Added 500 installs100% rating
28
Score
674
Errors
101
Warnings
+0
Change

Category Scores

Security3
Repo88
Performance98
Maintainability19

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

775 findings

Maintainability

676

12 issue groups

I18n

49

1 issue group

Security

46

7 issue groups

Repo Compliance

3

3 issue groups

ERRORMaintainabilitywp function not compatible with requires wpFunction "__()" requires WordPress 2.1.0, but your plugin minimum supported version is WordPress 2.0.0.623
Category
Maintainability
Occurrences
623
Severity
error

Sample message

Function "__()" requires WordPress 2.1.0, but your plugin minimum supported version is WordPress 2.0.0.

ERRORI18nText Domain MismatchMismatched text domain. Expected 'pdf-for-contact-form-7' but got "pdf-for-wpforms".49
Category
I18n
Occurrences
49
Severity
error

Sample message

Mismatched text domain. Expected 'pdf-for-contact-form-7' but got "pdf-for-wpforms".

WARNINGMaintainabilityNon-prefixed classClasses declared by a theme/plugin should start with the theme/plugin prefix. Found: "FrameFiller".17
Category
Maintainability
Occurrences
17
Severity
warning

Sample message

Classes declared by a theme/plugin should start with the theme/plugin prefix. Found: "FrameFiller".

WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.15
Category
Security
Occurrences
15
Severity
warning

Sample message

Processing form data without nonce verification.

WARNINGMaintainabilityNon-prefixed global variableGlobal variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$allowed_roles".14
Category
Maintainability
Occurrences
14
Severity
warning

Sample message

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$allowed_roles".

WARNINGSecurityRequest data is not unslashed$_GET['id'] not unslashed before sanitization. Use wp_unslash() or similar13
Category
Security
Occurrences
13
Severity
warning

Sample message

$_GET['id'] not unslashed before sanitization. Use wp_unslash() or similar

WARNINGSecurityMissing nonce verificationProcessing form data without nonce verification.10
Category
Security
Occurrences
10
Severity
warning

Sample message

Processing form data without nonce verification.

WARNINGMaintainabilityNot In FooterIn footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.7
Category
Maintainability
Occurrences
7
Severity
warning

Sample message

In footer ($in_footer) is not set explicitly wp_enqueue_script; It is recommended to load scripts in the footer. Please set this value to `true` to load it in the footer, or explicitly `false` if it should be loaded in the header.

WARNINGMaintainabilityNon-prefixed hook nameHook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "active_plugins".3
Category
Maintainability
Occurrences
3
Severity
warning

Sample message

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "active_plugins".

WARNINGSecurityInput is not validatedDetected usage of a possibly undefined superglobal array index: $_POST["form_id"]. Check that the array index exists before using it.3
Category
Security
Occurrences
3
Severity
warning

Sample message

Detected usage of a possibly undefined superglobal array index: $_POST["form_id"]. Check that the array index exists before using it.

Show 14 more
WARNINGSecurityDatabase parameter is not escaped2
Category
Security
Occurrences
2
Severity
warning

Sample message

Unescaped parameter $table_postmeta used in $wpdb->get_results()\n$table_postmeta assigned unsafely at line 140.

WARNINGMaintainabilityDirect Query2
Category
Maintainability
Occurrences
2
Severity
warning

Sample message

Use of a direct database call is discouraged.

WARNINGMaintainabilityNo Caching2
Category
Maintainability
Occurrences
2
Severity
warning

Sample message

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WARNINGSecurityInterpolated SQL is not prepared2
Category
Security
Occurrences
2
Severity
warning

Sample message

Use placeholders and $wpdb->prepare(); found interpolated variable $table_postmeta at "SELECT * FROM $table_postmeta WHERE post_id = %d"

WARNINGMaintainabilityNon-prefixed constant2
Category
Maintainability
Occurrences
2
Severity
warning

Sample message

Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "BUIDER_PDF_CF7_PLUGIN_PATH".

WARNINGMaintainabilityerror log error log2
Category
Maintainability
Occurrences
2
Severity
warning

Sample message

error_log() found. Debug code should not normally be used in production.

WARNINGMaintainabilityMissing Version2
Category
Maintainability
Occurrences
2
Severity
warning

Sample message

Resource version not set in call to wp_enqueue_script(). This means new versions of the script may not always be loaded due to browser caching.

ERRORMaintainabilitydate date1
Category
Maintainability
Occurrences
1
Severity
error

Sample message

date() is affected by runtime timezone changes which can cause date/time to be incorrectly displayed. Use gmdate() instead.

WARNINGSecurityInput is not sanitized1
Category
Security
Occurrences
1
Severity
warning

Sample message

Detected usage of a non-sanitized input variable: $_REQUEST['_wpnonce']

WARNINGPerformancePost Not In exclude1
Category
Performance
Occurrences
1
Severity
warning

Sample message

Using exclusionary parameters, like exclude, in calls to get_posts() should be done with caution, see https://wpvip.com/documentation/performance-improvements-by-removing-usage-of-post__not_in/ for more information.

WARNINGMaintainabilitymissing composer json file1
Category
Maintainability
Occurrences
1
Severity
warning

Sample message

The "/vendor" directory using composer exists, but "composer.json" file is missing.

WARNINGRepo Complianceplugin header nonexistent domain path1
Category
Repo Compliance
Occurrences
1
Severity
warning

Sample message

The "Domain Path" header in the plugin file must point to an existing folder. Found: "languages"

ERRORRepo Compliancereadme mismatched header requires php1
Category
Repo Compliance
Occurrences
1
Severity
error

Sample message

Mismatched Requires PHP: 7.0 != 5.6. "Requires PHP" needs to be exactly the same with that in your main plugin file's header.

WARNINGRepo Compliancereadme parser warnings too many tags1
Category
Repo Compliance
Occurrences
1
Severity
warning

Sample message

One or more tags were ignored. Please limit your plugin to 5 tags.

External Connections

Potential connections found in static code analysis.

51 domains

Outbound calls

291

External assets

1

Incoming endpoints

8

Notable Domains

setasign.com47 · outbound
tools.ietf.org19 · outbound
yamasoft.com12 · outbound
sourceforge.net11 · outbound
code.google.com10 · outbound
microsoft.com10 · outbound

Platform / Reference Domains

opensource.org44 · platform/reference
w3.org33 · platform/reference
github.com18 · platform/reference
dev.w3.org2 · platform/reference
gnu.org1 · platform/reference

External Asset Domains

bpm1.com1 · asset

Incoming Endpoints

No public endpoints detected.

Admin AJAX endpoints8
wp_ajax_pdf_reset_templateauthenticated

wp_ajax

wp_ajax_yeepdf_builder_export_htmlauthenticated

wp_ajax

wp_ajax_yeepdf_builder_textauthenticated

wp_ajax

wp_ajax_yeepdf_cf7_get_entriesauthenticated

wp_ajax

wp_ajax_yeepdf_convert_pdfauthenticated

wp_ajax

wp_ajax_yeepdf_dropbox_client_id_validateauthenticated

wp_ajax

wp_ajax_yeepdf_import_templateauthenticated

wp_ajax

wp_ajax_yeepdf_remove_fontauthenticated

wp_ajax

Score History

First score snapshot

v7.1.0

28

Latest

Findings
775
Errors
674
Warnings
101
Check
2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

37 nodes

Related Plugins