Does CellarWeb Privacy and Security Options have any unpatched vulnerabilities?

No. All known vulnerabilities in CellarWeb Privacy and Security Options have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is CellarWeb Privacy and Security Options compatible with WordPress 6.6.5?

According to WordPress.org data, CellarWeb Privacy and Security Options 4.17 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

Is CellarWeb Privacy and Security Options compatible with PHP 7.2+?

CellarWeb Privacy and Security Options requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is CellarWeb Privacy and Security Options updated?

CellarWeb Privacy and Security Options was last updated on Aug 30, 2024. Frequent updates are generally a positive security signal.

What is CellarWeb Privacy and Security Options's security score?

CellarWeb Privacy and Security Options has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

CellarWeb Privacy and Security Options Security & Risk Analysis

wordpress.org/plugins/cellarweb-privacy-and-security-options

Security and privacy settings for your site, all in one place.

20 active installs v4.17 PHP 7.2+ WP 4.9.6+ Updated Aug 30, 2024

site-security-privacy-safety-hardening

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is CellarWeb Privacy and Security Options Safe to Use in 2026?

Generally Safe

Score 92/100

CellarWeb Privacy and Security Options has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The static analysis of "cellarweb-privacy-and-security-options" v4.17 reveals a plugin with a very small attack surface, consisting of a single shortcode and no AJAX handlers or REST API routes. This is a positive indicator for security. The code also demonstrates good practices regarding SQL queries, utilizing prepared statements exclusively. However, a significant concern arises from the output escaping, where only 13% of outputs are properly escaped, leaving a large portion vulnerable to Cross-Site Scripting (XSS) attacks. The taint analysis, while limited in scope (2 flows analyzed), did identify two flows with unsanitized paths, indicating potential for vulnerabilities, though no critical or high severity issues were flagged. The lack of vulnerability history is a strong positive sign, suggesting the plugin has been stable and secure over time. Despite the limited attack surface and strong SQL practices, the poor output escaping and unsanitized path flows present a notable risk, particularly for XSS vulnerabilities.

Key Concerns

Poor output escaping
Unsanitized paths in taint flows
No capability checks
No nonce checks

Vulnerabilities

None known

CellarWeb Privacy and Security Options Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

CellarWeb Privacy and Security Options Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

8 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

13% escaped64 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

CWPS_render_fields (cellarweb-privacy-and-security.php:440)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

CellarWeb Privacy and Security Options Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[current_year] cellarweb-privacy-and-security.php:821

WordPress Hooks 37

actionadmin_initcellarweb-privacy-and-security.php:53

actionadmin_noticescellarweb-privacy-and-security.php:54

actionnetwork_admin_initcellarweb-privacy-and-security.php:55

actionnetwork_admin_noticescellarweb-privacy-and-security.php:56

actionadmin_menucellarweb-privacy-and-security.php:135

actionadmin_initcellarweb-privacy-and-security.php:136

filteradmin_footer_textcellarweb-privacy-and-security.php:165

filterrobots_txtcellarweb-privacy-and-security.php:514

actionwp_enqueue_scriptscellarweb-privacy-and-security.php:716

actionlogin_enqueue_scriptscellarweb-privacy-and-security.php:748

actionlogin_footercellarweb-privacy-and-security.php:757

filterxmlrpc_enabledcellarweb-privacy-and-security.php:775

actionadmin_noticescellarweb-privacy-and-security.php:785

actionlogin_enqueue_scriptscellarweb-privacy-and-security.php:794

filteradmin_email_check_intervalcellarweb-privacy-and-security.php:796

actioninitcellarweb-privacy-and-security.php:805

actionadmin_bar_menucellarweb-privacy-and-security.php:812

actionwp_before_admin_bar_rendercellarweb-privacy-and-security.php:815

actionwp_footercellarweb-privacy-and-security.php:818

filterwidget_textcellarweb-privacy-and-security.php:824

actionwp_headcellarweb-privacy-and-security.php:827

actionadded_optioncellarweb-privacy-and-security.php:837

actionadded_optioncellarweb-privacy-and-security.php:839

filterlogin_errorscellarweb-privacy-and-security.php:850

filterwp_nav_menu_itemscellarweb-privacy-and-security.php:869

actionwp_logoutcellarweb-privacy-and-security.php:874

filterlogin_redirectcellarweb-privacy-and-security.php:875

filterrobots_txtcellarweb-privacy-and-security.php:881

actionadmin_noticescellarweb-privacy-and-security.php:907

filterwpcf7_form_tagcellarweb-privacy-and-security.php:968

actionadmin_noticescellarweb-privacy-and-security.php:1042

actionadmin_noticescellarweb-privacy-and-security.php:1043

actionadmin_noticescellarweb-privacy-and-security.php:1052

actiontemplate_redirectcellarweb-privacy-and-security.php:1130

filterauthenticatecellarweb-privacy-and-security.php:1280

actionwp_login_failedcellarweb-privacy-and-security.php:1300

Maintenance & Trust

CellarWeb Privacy and Security Options Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedAug 30, 2024

PHP min version7.2

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

CellarWeb Privacy and Security Options Alternatives

No alternatives data available yet.

Developer Profile

CellarWeb Privacy and Security Options Developer Profile

Rick Hellewell

16 plugins · 1K total installs

trust score

Avg Security Score

91/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect CellarWeb Privacy and Security Options

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/cellarweb-privacy-and-security-options/css/settings.css

Version Parameters

cellarweb-privacy-and-security-options/css/settings.css?ver=

HTML / DOM Fingerprints

CSS Classes

CWPS_namespace

HTML Comments

Data Attributes

data-cwps-noncedata-cwps-nonce-checkdata-cwps-opt-out-message

JS Globals

CWPS_AJAX_URLCWPS_admin_ajax_urlCWPS_REST_URLCWPS_nonce

REST Endpoints

/wp-json/cwps/v1/block-ai-chatbot

Shortcode Output

[cwps_opt_out]

FAQ