Plugin to create forms using HTML

Until recently I’ve been using Custom Contact Forms to create some more advanced forms. The sole reason I’ve chosen this plugin was the ability to create my own layouts and basically just code clean HTML with CCF taking care of the rest.

However, recently I came across this topic and realized how vulnerable the plugin might actually be. Therefore, my question is: is there any other safe Forms plugin that allows me to create my own HTML-based – not UI-based – forms? I’d be grateful for any suggestions.

Read More

Edit: Since I don’t want to expose the vulnerability (however obvious it is), a temporary solution is to hard-code the recipient e-mail in the plugin code itself. If anybody would like to do that find and edit: /wp-contents/plugins/custom-contact-forms/custom-contact-forms-front.php line 427 and replace

$dest_email_array = $this->getDestinationEmailArray($_POST['destination_email']);

with

$dest_email_array = $this->getDestinationEmailArray('your@mail.com');

Other solutions I can think of, if you really are stuck with the plugin and have to use different e-mail recipients, is to use Advanced Custom Fields Plugin, to create page-dependent recipients, however, it’s not a place to describe the quite lengthy process of doing so.

Related posts

Leave a Reply

1 comment

  1. I would check out ContactForm7 it is a nice combination of easy to use and customizable at the same time. You can input html directly into the form if you’d like, and it doesn’t suffer from the same vulnerabilities that CCF does.