On its user input validation, Contact Form 7 has basically emulated the HTML specification and major browser implementations. However, there is a problem. They don’t handle surrounding whitespaces in a consistent way.
Continue reading Consistent handling policy of surrounding whitespacesAll posts by Takayuki Miyoshi
Avast false alarm again
Today I saw a lot of Contact Form 7 users reporting that the security software they use had detected a Trojan Horse in a script file in the Contact Form 7 package. I scanned the reported file on the WordPress.org plugin directory and found no problem, so I concluded that this is a false alarm.
The security software is provided by Avast Software. According to the reports from users, several other security applications from Avast’s group of companies showed the same alert. Avast is known to have caused a similar false alarm case that happened in 2021.
Contact Form 7 5.9.6
Contact Form 7 version 5.9.6 is now available. This minor update release includes a few improvements and bug fixes.
Continue reading Contact Form 7 5.9.6Conditional logic validation with the All and Any rules
In the Schema-Woven Validation terminology, a composite rule is a rule that has a set of child rules. Contact Form 7 5.9 and later support composite rule types, all and any, with which you can implement conditional logic in user input validation.
Contact Form 7 5.9.5
Contact Form 7 version 5.9.5 is now available. This minor update release includes a few improvements and security enhancements. Upgrading to this version as soon as possible is recommended.
Continue reading Contact Form 7 5.9.5Contact Form 7 5.9.4
Contact Form 7 version 5.9.4 is now available. This minor update release includes a few improvements.
Continue reading Contact Form 7 5.9.4Contact Form 7 5.9.3
Contact Form 7 version 5.9.3 is now available. This minor update release includes a few bug fixes and improvements.
Continue reading Contact Form 7 5.9.3Contact Form 7 5.9.2
Contact Form 7 version 5.9.2 is now available. This minor update release includes a security fix to address a medium severity Reflected Cross-Site Scripting vulnerability issue reported by Wordfence researcher Asaf Mozes. It also contains several other bug fixes and improvements. Upgrade to 5.9.2 as soon as possible.
Continue reading Contact Form 7 5.9.2Contact Form 7 5.9
Contact Form 7 version 5.9 is now available. This is a major update including many significant changes. Upgrading the plugin to 5.9 is recommended for all users.
Continue reading Contact Form 7 5.9Contact Form 7 5.8.7
Contact Form 7 version 5.8.7 is now available. This minor update release includes a few improvements.
Continue reading Contact Form 7 5.8.7