Top Contact WordPress Plugins
27 indexed plugins
Plugins
27
Active Installs
963k+
Average Score
56
Audited
27
Top Scores
| Rank | Plugin | Score | Errors | Warnings | Installs | Added | Updated | Top Issue |
|---|---|---|---|---|---|---|---|---|
| #1 | Contact Form Query | 100 | 0 | 1k+ | No open findings | |||
| #2 | Very Simple Google Maps | 99 | 2 | 0 | 3k+ | Missing direct file access protection | ||
| #3 | Contact Form Clean and Simple | 98 | 2 | 3 | 7k+ | Non-prefixed class | ||
| #4 | Contact Form 7 IE DatePicker and Number Spinner Fix | 97 | 5 | 5 | 1k+ | trademarked term | ||
| #5 | WP Click to Chat – Email, Live Chat, Call & Book Now Buttons | 94 | 43 | 47 | 1k+ | wp function not compatible with requires wp | ||
| #6 | Generate PDF using Contact Form 7 | 93 | 3 | 4k+ | Input is not sanitized | |||
| #7 | Rich Contact Widget | 80 | 13 | 2 | 9k+ | Output is not escaped | ||
| #8 | Multifile Upload Field for Contact Form 7 | 73 | 41 | 7 | 5k+ | Text Domain Mismatch | ||
| #9 | Awesome Contact Form7 for Elementor | 67 | 20 | 30 | 7k+ | Non-prefixed global variable | ||
| #10 | Sticky Side Buttons | 64 | 27 | 4 | 10k+ | Unsafe printing function | ||
| #11 | VS Contact Form | 55 | 3 | 318 | 7k+ | Non-prefixed global variable | ||
| #12 | Confirm Plus Contact Form 7 | 49 | 19 | 36 | 7k+ | Non Singular String Literal Domain | ||
| #13 | Inazo's flamingo automatically delete old messages | 45 | 33 | 20 | 4k+ | Output is not escaped | ||
| #14 | Contact Form 7 add confirm | 42 | 31 | 51 | 50k+ | Text Domain Mismatch | ||
| #15 | Speed Contact Bar | 42 | 53 | 20 | 5k+ | Output is not escaped | ||
| #16 | Contact Form 7 Widget | 41 | 70 | 4 | 2k+ | Output is not escaped | ||
| #17 | Flamingo | 40 | 15 | 228 | 800k+ | Nonce verification recommended | ||
| #18 | Contact Info Widget | 40 | 184 | 3 | 1k+ | Output is not escaped | ||
| #19 | Simple Webchat | 39 | 142 | 204 | 1k+ | Output is not escaped | ||
| #20 | Database for Contact Form 7 | 38 | 34 | 128 | 7k+ | Missing nonce verification | ||
| #21 | Contact Form 7 – Post Fields | 38 | 167 | 25 | 3k+ | Text Domain Mismatch | ||
| #22 | Anything Popup | 37 | 164 | 185 | 2k+ | Non-prefixed global variable | ||
| #23 | WPZOOM Forms – Drag & Drop Contact Form Builder for WordPress | 35 | 74 | 109 | 10k+ | Nonce verification recommended | ||
| #24 | EchBay Phonering Alo | 33 | 74 | 47 | 1k+ | Output is not escaped | ||
| #25 | cformsII | 31 | 777 | 536 | 4k+ | Unsafe printing function | ||
| #26 | Contact Form Email | 25 | 409 | 898 | 9k+ | Non-prefixed global variable | ||
| #27 | WP Email Template | 19 | 342 | 350 | 2k+ | Exception output is not escaped |
