WP-Safety

Automatic pages for Privacy Policy, Terms, About, Contact us Security & Risk Analysis

wordpress.org/plugins/automatic-pages-for-privacy-policy-terms-about-and-contact

[ โœ… ๐’๐„๐‚๐”๐‘๐„ ๐๐‹๐”๐†๐ˆ๐๐’ b๐“Ž ๐’ซ๐“Š๐“‹๐‘œ๐“ ] Automatically generate text for Privacy Policy, Terms of use, Contact us, About us

80 active installs v1.46 PHP + WP 6.0+ Updated Oct 30, 2024
conditionsofpolicyprivacyterms
92
A ยท Safe
CVEs total1
Unpatched0
Last CVEAug 1, 2022
Plugin page Download
Safety Verdict

Is Automatic pages for Privacy Policy, Terms, About, Contact us Safe to Use in 2026?

Generally Safe

Score 92/100

Automatic pages for Privacy Policy, Terms, About, Contact us has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Aug 1, 2022Updated 1yr ago
Risk Assessment

The plugin "automatic-pages-for-privacy-policy-terms-about-and-contact" v1.46 exhibits a mixed security posture. While it boasts a seemingly small attack surface with zero unprotected entry points, several concerning code signals and taint analysis findings warrant attention. The presence of a dangerous `unserialize` function, a high-severity taint flow with unsanitized paths, and only 50% of output being properly escaped indicate potential vulnerabilities in how the plugin handles and processes data. The vulnerability history, while showing no currently unpatched CVEs, does reveal a past medium-severity Cross-site Scripting (XSS) vulnerability, suggesting that improper input neutralization has been an issue in the past. Although the plugin demonstrates good practices in using prepared statements for SQL queries and incorporating some nonce and capability checks, the identified risks, particularly the `unserialize` function and unsanitized path flows, are significant enough to warrant caution.

Key Concerns

  • Dangerous function: unserialize present
  • High severity taint flow with unsanitized paths
  • 50% of output properly escaped
  • Vulnerability history: 1 medium CVE
Vulnerabilities
1

Automatic pages for Privacy Policy, Terms, About, Contact us Security Vulnerabilities

CVEs by Year

1 CVE in 2022
2022
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

WF-d36d97fb-2fce-4248-8955-7d66919487e3-automatic-pages-for-privacy-policy-terms-about-and-contactmedium ยท 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Automatic pages for Privacy Policy, Terms, About, Contact us <= 1.41 - Reflected Cross-Site Scripting

Aug 1, 2022 Patched in 1.42 (540d)
Code Analysis
Analyzed Mar 16, 2026

Automatic pages for Privacy Policy, Terms, About, Contact us Code Analysis

Dangerous Functions
1
Raw SQL Queries
14
46 prepared
Unescaped Output
87
86 escaped
Nonce Checks
6
Capability Checks
2
File Operations
20
External Requests
4
Bundled Libraries
0

Dangerous Functions Found

unserializeif ( @unserialize($serialized_string) !== false ) return $serialized_string;library.php:3813

SQL Query Safety

77% prepared60 total queries

Output Escaping

50% escaped173 total outputs
Data Flows
6 unsanitized

Data Flow Analysis

8 flows6 with unsanitized paths
force_redirect_to_https (library.php:103)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Automatic pages for Privacy Policy, Terms, About, Contact us Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 37
actionwp_headindex.php:126
actionwp_footerindex.php:127
actionwp_headindex.php:225
actionwp_footerindex.php:226
actionwp_headlibrary.php:4768
actionadmin_headlibrary.php:4769
actionwp_enqueue_scriptslibrary_wp.php:73
actionadmin_enqueue_scriptslibrary_wp.php:74
actionadmin_footerlibrary_wp.php:148
actioninitlibrary_wp.php:163
actionadmin_initlibrary_wp.php:210
filtermce_external_pluginslibrary_wp.php:212
filtermce_buttons_2library_wp.php:213
filtertiny_mce_versionlibrary_wp.php:215
actionwplibrary_wp.php:231
actionplugins_loadedlibrary_wp.php:540
actionwplibrary_wp.php:550
actionwp_footerlibrary_wp.php:700
actioninitlibrary_wp.php:711
actionwp_loadedlibrary_wp.php:854
actionshutdownlibrary_wp.php:859
actioninitlibrary_wp.php:1732
actionadmin_headlibrary_wp.php:1743
actioncurrent_screenlibrary_wp.php:1744
actionwplibrary_wp.php:1753
filterupload_mimeslibrary_wp.php:1759
filterwp_handle_uploadlibrary_wp.php:1760
actioninitlibrary_wp.php:1822
actionnetwork_admin_menulibrary_wp.php:1912
actionadmin_menulibrary_wp.php:1914
actionactivated_pluginlibrary_wp.php:1916
actionnetwork_admin_noticeslibrary_wp.php:2103
actionadmin_noticeslibrary_wp.php:2104
filterwp_php_error_messagelibrary_wp.php:2187
actionwp_footerlibrary_wp.php:2375
filterwidget_textlibrary_wp.php:2399
filtersite_transient_update_pluginslibrary_wp.php:3266
Maintenance & Trust

Automatic pages for Privacy Policy, Terms, About, Contact us Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8
Last updatedOct 30, 2024
PHP min version
Downloads18K

Community Trust

Rating74/100
Number of ratings3
Active installs80
Alternatives

Automatic pages for Privacy Policy, Terms, About, Contact us Alternatives

WP Terms Popup โ€“ Terms and Conditions and Privacy Policy WordPress Popups

WP Terms Popup โ€“ Terms and Conditions and Privacy Policy WordPress Popups

wp-terms-popup

A
100

Use WP Terms Popup to ask visitors to agree to your terms and conditions or privacy policy before they are allowed to view your site.

3K 1 CVE
iubenda | All-in-one Compliance for GDPR / CCPA Cookie Consent + more

iubenda | All-in-one Compliance for GDPR / CCPA Cookie Consent + more

iubenda-cookie-law-solution

A
97

The solution for GDPR compliance + more. Get your cookie banner, privacy policy, terms and conditions and handle cookie consent in just one plugin.

200K 4 CVEs
Legal Pages โ€“ Privacy Policy, Terms & Conditions, GDPR, CCPA, and Cookie Notice Generator

Legal Pages โ€“ Privacy Policy, Terms & Conditions, GDPR, CCPA, and Cookie Notice Generator

legal-pages

A
95

The best WordPress legal pages generator that comes with pre-made templates for GDPR, CCPA, DMCA, Privacy Policy, Terms & Conditions, Cookie Polic &hellip;

10K 7 CVEs
Privacy Policy Generator โ€“ WPLP Legal Pages

Privacy Policy Generator โ€“ WPLP Legal Pages

wplegalpages

A
92

Create and manage legal pages for WordPress websites using ready-made policy templates that support common privacy and compliance requirements.

10K 7 CVEs
Signature Add-On for WooCommerce

Signature Add-On for WooCommerce

woocommerce-digital-signature

A
100

Automatically require your WooCommerce customers to sign a legally binding contract before downloading your product. Easy to Use.

1K No CVEs
Developer Profile

Automatic pages for Privacy Policy, Terms, About, Contact us Developer Profile

Puvox Software

16 plugins ยท 51K total installs

75
trust score
Avg Security Score
94/100
Avg Patch Time
540 days
View full developer profile
Detection Fingerprints

How We Detect Automatic pages for Privacy Policy, Terms, About, Contact us

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/automatic-pages-for-privacy-policy-terms-about-and-contact/assets/style.css/wp-content/plugins/automatic-pages-for-privacy-policy-terms-about-and-contact/assets/script.js
Script Paths
/wp-content/plugins/automatic-pages-for-privacy-policy-terms-about-and-contact/assets/script.js
Version Parameters
automatic-pages-for-privacy-policy-terms-about-and-contact/assets/style.css?ver=automatic-pages-for-privacy-policy-terms-about-and-contact/assets/script.js?ver=

HTML / DOM Fingerprints

CSS Classes
info-childsinfopageatgfip_text
Data Attributes
data-recipientdata-cachedata-exlude
JS Globals
atgfip_cookieconsent_status
Shortcode Output
<div class="info-childs"><div class="infopage"><div class="atgfip_text">
FAQ

Frequently Asked Questions about Automatic pages for Privacy Policy, Terms, About, Contact us