WP-Safety

Adapta RGPD Security & Risk Analysis

wordpress.org/plugins/adapta-rgpd

La solución completa para el cumplimiento del RGPD y la LOPD GDD en español: Crea los textos legales, el banner de cookies y documenta los consentimie …

40K active installs v1.3.9 PHP 5.6+ WP 4.7+ Updated Jun 17, 2025
cookieslegallopdprivacidadrgpd
99
A · Safe
CVEs total1
Unpatched0
Last CVEJun 30, 2021
Plugin page Download
Safety Verdict

Is Adapta RGPD Safe to Use in 2026?

Generally Safe

Score 99/100

Adapta RGPD has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jun 30, 2021Updated 9mo ago
Risk Assessment

The 'adapta-rgpd' plugin, version 1.3.9, exhibits a generally good security posture with a strong emphasis on secure coding practices. The static analysis reveals a commendable absence of dangerous functions and a complete reliance on prepared statements for SQL queries. Furthermore, the plugin demonstrates robust output escaping, with 96% of outputs being properly handled, and a significant number of nonce and capability checks are implemented. This suggests a conscientious development effort towards preventing common web vulnerabilities.

However, there are areas that warrant attention. The taint analysis, while not revealing critical or high severity issues, did identify two flows with unsanitized paths. This indicates potential weaknesses in how user-supplied data is handled, which could be exploited in specific scenarios. The presence of one previously high-severity vulnerability, specifically CSRF, in its history is also a point of concern, even though it is currently patched. While the plugin has a low total attack surface with no unprotected entry points, the two unsanitized paths in the taint analysis present a tangible risk that needs to be addressed.

In conclusion, 'adapta-rgpd' v1.3.9 benefits from strong foundational security practices, particularly in its handling of SQL and output. The development team has clearly invested in security. Nevertheless, the identified unsanitized data flows and the historical presence of a high-severity CSRF vulnerability suggest that ongoing vigilance and code review are essential to maintain a secure state.

Key Concerns

  • Unsanitized paths in taint analysis
  • Historical high severity vulnerability (CSRF)
Vulnerabilities
1

Adapta RGPD Security Vulnerabilities

CVEs by Year

1 CVE in 2021
2021
Patched Has unpatched

Severity Breakdown

High
1

1 total CVE

WF-220055ff-683c-47a4-8817-b3e70bb9dc81-adapta-rgpdhigh · 8.8Cross-Site Request Forgery (CSRF)

Adapta RGPD <= 1.3.2 - Cross-Site Request Forgery

Jun 30, 2021 Patched in 1.3.3 (937d)
Code Analysis
Analyzed Mar 16, 2026

Adapta RGPD Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
10
243 escaped
Nonce Checks
10
Capability Checks
12
File Operations
1
External Requests
4
Bundled Libraries
1

Bundled Libraries

DataTables

Output Escaping

96% escaped253 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

5 flows2 with unsanitized paths
argpd_get_states (includes\class-ui.php:588)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Adapta RGPD Attack Surface

Entry Points11
Unprotected0

AJAX Handlers 5

authwp_ajax_cookie_consentincludes\class-integration.php:216
noprivwp_ajax_cookie_consentincludes\class-integration.php:218
authwp_ajax_argpd_get_statesincludes\class-ui.php:72
authwp_ajax_consents_load_dataincludes\class-ui.php:73
authwp_ajax_argpd_create_pageincludes\class-ui.php:74

Shortcodes 6

[argpd_aviso-legal] includes\class-pages.php:82
[argpd_politica-cookies] includes\class-pages.php:89
[argpd_politica-privacidad] includes\class-pages.php:96
[argpd_preferencias-cookies] includes\class-pages.php:103
[argpd_consentimiento] includes\class-pages.php:110
[argpd_deber_de_informar] includes\class-pages.php:117
WordPress Hooks 46
actioninitadapta-rgpd.php:208
actionall_admin_noticesadapta-rgpd.php:276
actionadmin_initadapta-rgpd.php:279
actionplugins_loadedadapta-rgpd.php:427
actionadmin_menuincludes\class-admin.php:79
actionadmin_post_argpd_setupincludes\class-admin.php:82
actionadmin_post_argpd_pages_setupincludes\class-admin.php:83
actionadmin_post_argpd_cookies_setupincludes\class-admin.php:84
actionadmin_post_argpd_disclaimerincludes\class-admin.php:85
actionadmin_post_argpd_addons_setupincludes\class-admin.php:86
actionadmin_post_argpd_consents_setupincludes\class-admin.php:87
actionwp_footerincludes\class-integration.php:111
actioninitincludes\class-integration.php:114
actioninitincludes\class-integration.php:115
filterwp_nav_menu_itemsincludes\class-integration.php:118
actionpre_comment_on_postincludes\class-integration.php:129
filtercomment_form_submit_fieldincludes\class-integration.php:130
actionwoocommerce_review_order_after_submitincludes\class-integration.php:142
actionwoocommerce_review_order_before_submitincludes\class-integration.php:147
actionwoocommerce_checkout_update_order_metaincludes\class-integration.php:148
actionwoocommerce_admin_order_data_after_billing_addressincludes\class-integration.php:149
filterwoocommerce_email_after_order_tableincludes\class-integration.php:150
actionwp_footerincludes\class-integration.php:156
filterscript_loader_srcincludes\class-integration.php:163
actiontemplate_redirectincludes\class-integration.php:170
actionshutdownincludes\class-integration.php:171
filterargpd_unconsent_patternsincludes\class-integration.php:175
filterargpd_unconsent_iframe_patternsincludes\class-integration.php:198
actionwp_footerincludes\class-integration.php:213
actionadmin_enqueue_scriptsincludes\class-integration.php:224
actionwp_headincludes\class-integration.php:228
filterwp_sitemaps_posts_query_argsincludes\class-integration.php:229
filterthe_contentincludes\class-pages.php:128
actionargpd_settings_tabincludes\class-ui.php:62
actionargpd_settings_tabincludes\class-ui.php:63
actionargpd_settings_tabincludes\class-ui.php:64
actionargpd_settings_tabincludes\class-ui.php:65
actionargpd_settings_contentincludes\class-ui.php:66
actionargpd_settings_contentincludes\class-ui.php:67
actionargpd_settings_contentincludes\class-ui.php:68
actionargpd_settings_contentincludes\class-ui.php:69
actionadmin_footerincludes\class-ui.php:77
actionadmin_footerincludes\class-ui.php:78
actionadmin_footerincludes\class-ui.php:79
actionadmin_footerincludes\class-ui.php:80
actionadmin_enqueue_scriptsincludes\class-ui.php:83
Maintenance & Trust

Adapta RGPD Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedJun 17, 2025
PHP min version5.6
Downloads379K

Community Trust

Rating96/100
Number of ratings105
Active installs40K
Alternatives

Adapta RGPD Alternatives

Protección de datos – RGPD

Protección de datos – RGPD

proteccion-datos-rgpd

A
99

En minutos cumplirás con la legislación vigente, RGPD LSSICE y LOPD, con los documentos legales de políticas y datos obligatorios en formularios.

7K 1 CVE
Asesor de Cookies RGPD para normativa europea

Asesor de Cookies RGPD para normativa europea

asesor-cookies-para-la-ley-en-espana

A
100

Este plugin le facilita la adaptación a la RGPD de su web a la política de cookies mostrando el aviso a los visitantes de su página y proporcionándole &hellip;

20K No CVEs
Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch

Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch

axeptio-sdk-integration

A
97

Axeptio is the best solution to make your website GDPR compatible and make your visitors smile!

8K 1 CVE
Cookie Dough Compliance and Consent for GDPR

Cookie Dough Compliance and Consent for GDPR

cookie-dough-compliance-and-consent-for-gdpr

A
100

Cookie Dough Compliance and Consent for GDPR is a GDPR cookie consent extension. Style your modal cookie.

500 No CVEs
Mentions Legales Par Webdeclic

Mentions Legales Par Webdeclic

mentions-legales-par-webdeclic

A
100

Génère un shortcode pour les mentions légales qui sont obligatoires sur les sites internet en France.

500 No CVEs
Developer Profile

Adapta RGPD Developer Profile

Superadmin

1 plugin · 40K total installs

78
trust score
Avg Security Score
99/100
Avg Patch Time
937 days
View full developer profile
Detection Fingerprints

How We Detect Adapta RGPD

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/adapta-rgpd/assets/css/argpd-main.css/wp-content/plugins/adapta-rgpd/assets/js/argpd-main.js
Script Paths
/wp-content/plugins/adapta-rgpd/assets/js/argpd-main.js
Version Parameters
adapta-rgpd/assets/css/argpd-main.css?ver=adapta-rgpd/assets/js/argpd-main.js?ver=

HTML / DOM Fingerprints

CSS Classes
argpd-dialogargpd-buttonargpd-settings-formargpd-cookies
HTML Comments
<!-- ARGPD Cookie Consent --><!-- END ARGPD Cookie Consent --><!-- Adapted RGPD --><!-- End Adapted RGPD -->
Data Attributes
data-argpd-cookiedata-argpd-dismissdata-argpd-url
JS Globals
argpd_data
REST Endpoints
/wp-json/argpd/v1/settings/wp-json/argpd/v1/consent
Shortcode Output
[adapta_rgpd_cookie_consent][adapta_rgpd_privacy_policy]
FAQ

Frequently Asked Questions about Adapta RGPD