Thank you for reaching out @dave8441!
weForms is designed to protect your site from malicious inputs, such as code injection. It uses WordPress’s built-in functions like sanitize_text_field() and other appropriate sanitization methods for user-submitted data. This ensures that form inputs are stripped of harmful code before being saved or processed.
The plugin also includes validation rules to ensure that fields only accept the expected type of input (e.g., text, email, numbers). This minimizes the risk of improper data being submitted.
You can enhance security by:
- Adding server-side validation rules to explicitly block unwanted characters.
- Using WordPress security plugins to monitor for vulnerabilities.
- Enabling a Web Application Firewall (WAF) to prevent injection attacks.
I hope this helps! If you’re looking to confirm specific technical settings, feel free to share more details, and we can guide you further!
