Does Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch have any unpatched vulnerabilities?

No. All known vulnerabilities in Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch compatible with WordPress 6.8.5?

According to WordPress.org data, Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch 2.6.1 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch Security & Risk Analysis

wordpress.org/plugins/axeptio-sdk-integration

Axeptio is the best solution to make your website GDPR compatible and make your visitors smile!

8K active installs v2.6.1 PHP 7.4+ WP 5.0+ Updated Jun 16, 2025

axeptioconsentcookiesgdprrgpd

A · Safe

CVEs total1

Unpatched0

Last CVEDec 11, 2024

Plugin page Download

Safety Verdict

Is Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch Safe to Use in 2026?

Generally Safe

Score 97/100

Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Dec 11, 2024Updated 9mo ago

Risk Assessment

The 'axeptio-sdk-integration' v2.6.1 plugin exhibits a generally strong security posture, particularly evident in its handling of entry points. With zero unprotected AJAX handlers, REST API routes, shortcodes, or cron events, the attack surface is well-secured. The code also demonstrates good practices with a high percentage of properly escaped output and the absence of dangerous functions or file operations. External HTTP requests are present but are not inherently a security risk in isolation.

However, there are a couple of areas for concern. The plugin uses 50% of its SQL queries without prepared statements, which could leave it vulnerable to SQL injection if the unsanitized queries handle user-supplied input. The absence of nonce checks is a significant omission, especially considering the presence of REST API endpoints. While static analysis found no direct taint flows, the lack of nonce checks on potentially user-facing API routes is a considerable risk. The plugin's vulnerability history, specifically a past critical CVE related to 'PHP Remote File Inclusion,' is concerning. Although currently unpatched, this history suggests a recurring weakness that requires careful monitoring and prompt patching of any future vulnerabilities.

In conclusion, the plugin has several strong security features, including a well-protected attack surface and good output escaping. Nevertheless, the use of raw SQL and, more critically, the absence of nonce checks on API endpoints, coupled with a history of critical vulnerabilities, indicate potential weaknesses that need addressing. Proactive security measures, such as implementing prepared statements for all SQL queries and adding nonce checks to its API routes, are recommended.

Key Concerns

SQL queries not using prepared statements
Missing nonce checks on API routes
Past critical CVE: PHP Remote File Inclusion

Vulnerabilities

Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

Critical

1 total CVE

CVE-2024-54270critical · 9.8Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

Axeptio <= 2.5.4 - Unauthenticated Local File Inclusion

Dec 11, 2024 Patched in 2.5.5 (27d)

Code Analysis

Analyzed Mar 16, 2026

Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch Code Analysis

Dangerous Functions

Raw SQL Queries

5 prepared

Unescaped Output

233 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

50% prepared10 total queries

Output Escaping

91% escaped255 total outputs

Attack Surface

Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch Attack Surface

Entry Points5

Unprotected0

REST API Routes 5

GET/wp-json/axeptio/v1/plugins/(?P<axeptio_configuration_id>([a-zA-Z0-9_ -]|%20)+)includes\classes\admin\rest\class-plugins.php:51

GET/wp-json/axeptio/v1/plugins/(?P<axeptio_configuration_id>([a-zA-Z0-9_ -]|%20)+)/(?P<plugin>[a-zA-Z0-9_-]+)includes\classes\admin\rest\class-plugins.php:61

GET/wp-json/axeptio/v1/plugins/(?P<axeptio_configuration_id>([a-zA-Z0-9_ -]|%20)+)/(?P<plugin>[a-zA-Z0-9_-]+)includes\classes\admin\rest\class-plugins.php:71

GET/wp-json/axeptio/v1/disable-noticeincludes\classes\admin\rest\class-plugins.php:81

GET/wp-json/axeptio/v1/timeout-noticeincludes\classes\admin\rest\class-plugins.php:91

WordPress Hooks 31

actioninitincludes\classes\admin\pages\class-admin-main.php:58

actionaxeptio/after_main_settingsincludes\classes\admin\pages\class-admin-main.php:72

actionaxeptio/before_main_setting_containerincludes\classes\admin\pages\class-admin-main.php:73

actionaxeptio/before_plugin_manager_containerincludes\classes\admin\pages\class-admin-main.php:74

actionadmin_menuincludes\classes\admin\pages\class-admin-main.php:78

actionrest_api_initincludes\classes\admin\rest\class-plugins.php:32

actionadmin_menuincludes\classes\admin\settings\class-setting-api.php:54

actionadmin_initincludes\classes\admin\settings\class-setting-api.php:57

actionupdate_option_axeptio_settingsincludes\classes\backend\class-settings.php:33

actionpre_update_option_axeptio_settingsincludes\classes\backend\class-settings.php:34

filterwp_kses_allowed_htmlincludes\classes\compat\class-alpinejs-wpkses.php:28

actionwp_enqueue_scriptsincludes\classes\frontend\class-axeptio-sdk.php:44

actionwp_headincludes\classes\frontend\class-axeptio-sdk.php:114

actiontemplate_redirectincludes\classes\frontend\class-hook-modifier.php:108

actionshutdownincludes\classes\frontend\class-hook-modifier.php:109

actioninitincludes\classes\frontend\class-sdk-proxy.php:35

filterquery_varsincludes\classes\frontend\class-sdk-proxy.php:36

actiontemplate_redirectincludes\classes\frontend\class-sdk-proxy.php:37

filterredirect_canonicalincludes\classes\frontend\class-sdk-proxy.php:38

actionupdate_option_axeptio_settingsincludes\classes\frontend\class-sdk-proxy.php:39

actionadmin_initincludes\classes\init\class-activation-hook.php:31

actionaxeptio/before_main_setting_containerincludes\classes\init\class-activation-hook.php:32

actionwp_loadedincludes\classes\models\class-models.php:28

actioninitincludes\core.php:25

actioninitincludes\core.php:26

actioninitincludes\core.php:27

actionadmin_enqueue_scriptsincludes\core.php:28

actionadmin_enqueue_scriptsincludes\core.php:29

filterscript_loader_tagincludes\core.php:32

actioninitincludes\core.php:36

actionadmin_noticesincludes\core.php:79

Maintenance & Trust

Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJun 16, 2025

PHP min version7.4

Downloads131K

Community Trust

Rating100/100

Number of ratings4

Active installs8K

Alternatives

Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch Alternatives

Cookie Dough Compliance and Consent for GDPR

cookie-dough-compliance-and-consent-for-gdpr

100

Cookie Dough Compliance and Consent for GDPR is a GDPR cookie consent extension. Style your modal cookie.

500 No CVEs

Cookie Notice & Compliance for GDPR / CCPA

cookie-notice

Cookie Notice allows you to you elegantly inform users that your site uses cookies and helps you comply with GDPR, CCPA and other data privacy laws.

900K 6 CVEs

Cookie-Script.com

cookie-script-com

Cookie-Script.com WordPress plugin.

10K 1 CVE

Pressidium Cookie Consent

pressidium-cookie-consent

100

Lightweight, user-friendly and customizable cookie consent banner to help you comply with the EU GDPR cookie law and CCPA regulations.

10K No CVEs

EU Cookies Bar for WordPress

eu-cookies-bar

100

Ensure GDPR (General Data Protection Regulation) compliance (EU Cookie Law) with our straightforward cookie bar

9K No CVEs

Developer Profile

Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch Developer Profile

Axeptio

1 plugin · 8K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

27 days

View full developer profile

Detection Fingerprints

How We Detect Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/axeptio-sdk-integration/assets/frontend/main.css/wp-content/plugins/axeptio-sdk-integration/assets/frontend/axeptio.js/wp-content/plugins/axeptio-sdk-integration/includes/frontend/sdk.js

Script Paths

/wp-content/plugins/axeptio-sdk-integration/assets/frontend/axeptio.js/wp-content/plugins/axeptio-sdk-integration/includes/frontend/sdk.js

Version Parameters

axeptio/main?ver=frontend/axeptio?ver=frontend/main?ver=

HTML / DOM Fingerprints

JS Globals

Axeptio_SDKaxeptioWordpressVendorsaxeptioWordpressSteps

FAQ